• jbk@discuss.tchncs.de
    link
    fedilink
    arrow-up
    2
    ·
    9 months ago

    Text files could theoretically contain malicious content. Why doesn’t the format have a built-in virus scanner??? Is this what you’re suggesting?

    • AMDIsOurLord
      link
      fedilink
      arrow-up
      1
      ·
      9 months ago

      No, but root-of-trust isn’t really established unless you ONLY take packages that the distro’s security maintainers actually maintain, Flatpak, Appimage and Snap are a bit of a no man’s land. You have to trust the developers to be cool, independent of the tool, unless you as mentioned before use only FOSS software from the distro’s main repositories. And yes, specifically main repos because any random dick can go and upload a PKGBUILD or make a PPA.