It's nice to see agreement on the issues of snap on ubuntu.
The whole practice of third party package managers is a disaster.
One of the biggest improvements in secruity of a linux desktop as opposed to windows is the model of loading applications. In windows, binaries are loaded from random third parties over the internet, in linux distributions the applications are built, and the biniaries provided by the distribution.
Even if applications aren't methodically audited, the pathway for inspection and debug is already in place due to building teh application at the distributor, not by the third party proving the application.
Third party package managers are an aggrigated version of this, they bypass the infrastructure that provides binaries for distribution user's to execute.
The whole practice of third party package managers is a disaster.
One of the biggest improvements in secruity of a linux desktop as opposed to windows is the model of loading applications. In windows, binaries are loaded from random third parties over the internet, in linux distributions the applications are built, and the biniaries provided by the distribution.
Even if applications aren't methodically audited, the pathway for inspection and debug is already in place due to building teh application at the distributor, not by the third party proving the application.
Third party package managers are an aggrigated version of this, they bypass the infrastructure that provides binaries for distribution user's to execute.