This comment is super dumb, just because there are unofficial flatpaks lying around that does not make flatpak a bad format you can configure bazaar to only search for verified apps IIRC so flatpak is linked to the source code or website.
A more reasonable take might be: don’t install flatpaks willy-nilly without first verifying that they’re maintained by the original developers (or an authorized third party, which is sometimes the case). The same way I wouldn’t run apt install <package> without first checking the package info to ensure I’m installing a legit package (if I’m not already familiar with the specific package I’m installing).
Doesn’t the same hold for distributions repackaging software? Surely most developers don’t maintain their own Debian packages, Fedora rpms, Arch whatever-their-name-is’s, etc?
deleted by creator
This comment is super dumb, just because there are unofficial flatpaks lying around that does not make flatpak a bad format you can configure bazaar to only search for verified apps IIRC so flatpak is linked to the source code or website.
deleted by creator
A more reasonable take might be: don’t install flatpaks willy-nilly without first verifying that they’re maintained by the original developers (or an authorized third party, which is sometimes the case). The same way I wouldn’t run
apt install <package>without first checking the package info to ensure I’m installing a legit package (if I’m not already familiar with the specific package I’m installing).Doesn’t the same hold for distributions repackaging software? Surely most developers don’t maintain their own Debian packages, Fedora rpms, Arch whatever-their-name-is’s, etc?
Arch uses pacman