Our great sponsors
-
WorkOS
The modern identity platform for B2B SaaS. The APIs are flexible and easy-to-use, supporting authentication, user identity, and complex enterprise features like SSO and SCIM provisioning.
The author of this has been running with it for a couple of years. Previous HN threads:
https://hn.algolia.com/?query=Flatpak%20%E2%80%93%20A%20Secu...
The tone and varied assortment of issues makes me feel like he started by deciding that Flatpak was bad, and then found whatever he could to support his view.
Flatpak handles all that too, all these tools are using the same Linux security primitives. There is really not any difference between them from a security perspective. Technically flatpak is based around bubblewrap which is kind of like an even simpler version of firejail: https://github.com/containers/bubblewrap