Basically title.

I’m wondering if a package manager like flatpak comes with any drawback or negatives. Since it just works on basically any distro. Why isn’t this just the default? It seems very convenient.

  • corsicanguppy@lemmy.ca
    link
    fedilink
    arrow-up
    5
    ·
    edit-2
    10 months ago

    flatpak >>>> snap > appimages

    I didn’t know we were ranking the horsemen of the apocalypse. Leave room for shitty supply-chain victims like cpan/composer/npm and other irresponsible shortcut tools that throw security out the window.

    • clemdemort@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      10 months ago

      In the case of NPM (don’t know enough about the others) it’s not a general purpose package manager, it’s only for node related packages.

      And yes I think ranking them is relevant Appimages are pretty terrible security wise(let’s download random executables on the internet yayyy!), snaps are getting better but used to be really terrible and to be fair NixPkgs aren’t that safe either.

      Flatpaks are pretty secure, they work well, the stack is fully open source and allows you to host your own flatpaks repos, as well as manage sandboxing parameters. If only they were lighter I could easily see them become the “Linux executable format”