Zerush@lemmy.ml to Open Source@lemmy.ml · 8 months agoOver 100,000 Infected Repos Found on GitHubapiiro.comexternal-linkmessage-square28fedilinkarrow-up1208arrow-down14
arrow-up1204arrow-down1external-linkOver 100,000 Infected Repos Found on GitHubapiiro.comZerush@lemmy.ml to Open Source@lemmy.ml · 8 months agomessage-square28fedilink
minus-squarePantherina@feddit.delinkfedilinkarrow-up12·edit-28 months agoLol apt Or to frame it differently, use a package manager and not appimages etc.
minus-squaredelirious_owl@discuss.onlinelinkfedilinkarrow-up4arrow-down1·8 months agoAppImages actually do have (optional) support for signatures.
minus-squarePantherina@feddit.delinkfedilinkarrow-up2·8 months agoThey have no update feature afaik, how does this work? What verified this signature, the user?
minus-squaredelirious_owl@discuss.onlinelinkfedilinkarrow-up2·8 months agoIts a subcommand of the AppImage. The developer adds the signature to the AppImage and the user verifies it after download with the subcommand.
minus-squarePantherina@feddit.delinkfedilinkarrow-up1·8 months agoThats nice, didnt even know there was an interface for managing appimages?
minus-squarePantherina@feddit.delinkfedilinkarrow-up1·8 months agoFlatpaks are a good system that tick every checkbox except “zero permissions by default” and “efficient by design”
Lol apt
Or to frame it differently, use a package manager and not appimages etc.
AppImages actually do have (optional) support for signatures.
They have no update feature afaik, how does this work? What verified this signature, the user?
Its a subcommand of the AppImage. The developer adds the signature to the AppImage and the user verifies it after download with the subcommand.
Thats nice, didnt even know there was an interface for managing appimages?
Bu-bu-but mah flatpaaaaaacks
Flatpaks are a good system that tick every checkbox except “zero permissions by default” and “efficient by design”