|
|
|
|
|
|
by antpls
1897 days ago
|
|
|
Telling people "just use flatpak and you are safe" is plain wrong and dangerous. Containers are _not_ safe, that's why Amazon created firecracker, and Google created gVisor. Containers are a _convenience_, not a security measure. All security precautions apply to container apps as any other apps. |
|
|
There have been some flatpak CVEs in the past, but I wonder what your claim of them not being secure is based on, other than general principles: yes, there could be a bug in the sandbox, but besides that?