The Software Manager app in Linux Mint 22 will deliver faster start-up times and introduce a significant security safeguard for search results. As you may
A system package can edit /etc, autostart itself, write to all your devices and /home.
Distro packages are not inherently more secure, but they are all controlled and packaged by the team who manages your operating system. So you trust them fully. Which you cant for arbitrary packages from Flatpak, similar to arbitrary packages from Google playstore on Android. That’s why those “unmanaged” Flatpaks need such a rights system. I’m not saying one is better than the other, just that you can’t limit the security value by just what the app is allowed to do (in my opinion).
Linux mint and Ubuntu both add the “universe” repo by default. That repo is basically community grade, and even used for official flavors which tells a lot about their reliability.
Same with Fedora. Everything outside of Workstation or the KDE Spin needs to be checked for maintenance carefully. There is lots of abandonware.
With Flatpak on the other hand too, and you can still use it as it can just use EOL runtimes even on a rolling distro…
Distro packages are not inherently more secure, but they are all controlled and packaged by the team who manages your operating system. So you trust them fully. Which you cant for arbitrary packages from Flatpak, similar to arbitrary packages from Google playstore on Android. That’s why those “unmanaged” Flatpaks need such a rights system. I’m not saying one is better than the other, just that you can’t limit the security value by just what the app is allowed to do (in my opinion).
Linux mint and Ubuntu both add the “universe” repo by default. That repo is basically community grade, and even used for official flavors which tells a lot about their reliability.
Same with Fedora. Everything outside of Workstation or the KDE Spin needs to be checked for maintenance carefully. There is lots of abandonware.
With Flatpak on the other hand too, and you can still use it as it can just use EOL runtimes even on a rolling distro…