https://bugs.kde.org/show_bug.cgi?id=484275
Nate Graham <n...@kde.org> changed:
What |Removed |Added
----------------------------------------------------------------------------
Severity|major |wishlist
Status|REPORTED |RESOLVED
Resolution|--- |MOVED
Summary|Discover does not warn and |Warn and confirm
|confirm installation of |installation of Flatpaks
|Flatpaks with potentially |with potentially dangerous
|dangerous permissions and |permissions and when
|when permissions change |permissions change
CC| |n...@kde.org
--- Comment #1 from Nate Graham <n...@kde.org> ---
This might be nice, but the lack of it isn't a bug, and I'm not necessarily
sure it's even problem. For apps that come from distro repos or Flathub or
whatever, we rely on various factors to keep users safe:
1. Sandboxing
2. Some amount of review from the distributors
3. The developers themselves being known and trustworthy.
Having #1 being nonexistent or compromised isn't actually a real problem as
long as #2 and #3 are true; if this wasn't the case, then every distro-packaged
app would be dangerous. I've noticed that GNOME Software makes this judgment
and I don't think it's the right call. So many apps have these warnings that
they become meaningless visual noise, and the user can't tell what's *actually*
dangerous vs what *might be* dangerous.
There's an existing discussion of this in
https://invent.kde.org/plasma/discover/-/issues/16; let's keep the convesation
there.
--
You are receiving this mail because:
You are watching all bug changes.
