• Pantherina@feddit.de
    link
    fedilink
    arrow-up
    12
    ·
    8 months ago

    If you create malware and publish it on flathub, you are the upstream dev. But for sure it helps against duplicate scams.

    • dsemy@lemm.ee
      link
      fedilink
      English
      arrow-up
      24
      ·
      edit-2
      8 months ago

      I can’t find it now, but I read that the verification process also includes human review (for the initial verification, not every update), so it should actually prevent “verified” malware (though it does nothing against unverified malware).

      Edit: Here’s an article with this and more info: https://lwn.net/SubscriberLink/966187/3ef48792e5e8c71d/

      • Pantherina@feddit.de
        link
        fedilink
        arrow-up
        5
        ·
        8 months ago

        Nice!

        Add flathub with --subset=verified and get apps you really need from their .flatpakref files