Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
-
AppImageLauncher
Helper application for Linux distributions serving as a kind of "entry point" for running and integrating AppImages
The manifest is building sources rather than unpacking binaries built elsewhere. It is pretty difficult to know what sources prepackaged binaries are built from, they could in theory contain malware. Session is downloading a deb package and unpacking that, is the deb file built from the sources we see in the repo and can we know that?
for example, bitwarden's flatpak on github shows basically just repackages the official debian build into a flatpak build. in this case i think it's pretty safe (in fact i use the flatpak).
I'm using AppImageLauncher on Fedora.