The sandbox can be very cumbersome when there is not a way to break out. I'm thinking specifically of command line tools for developers. You can poke holes in the sandbox to access the filesystem, but the moment you want to run an executable it won't let you.
Flathub doesn't accept CLI tools (unlike the Snap store)
Regarding modifying Sandboxes, try Flatseal
I never ever will use a flatpak or snap or whatever "application". I'm using good old .deb package.
It's alright
I think Flatpaks are great for applications like Firefox, Steam, etc. where dependencies or delay in package distribution due to building multiple versions can be a problem.
However, there are many situations where Flatpak's sandbox can be more detriment than helpful, if the application wasn't developed with that in mind. It's not a silver bullet for everything.
I love the idea and the philosophy behind ! I have no trouble with them for now, one click install perfect.
However I’ll never use it for programming and I don’t understand why people use vs code flatpak or other coding app, because the app is contained and cannot interact with your system.
the app is contained and cannot interact with your system.
It can. Think of it like allowing a phone app to interact with your stored files.
https://docs.flatpak.org/en/latest/sandbox-permissions.html#
@Shareni@programming.dev @CeeBee@lemmy.world thanks for the resources I did not know. I was pretty confused it was not possible to do it and here you are thx ! :)
I like it, it's good for desktop apps but I LOVEEEEEE nix, if there was a graphical box distro I think it would beat everything else out of the water. Full reproducible builds is not something to sneeze at
I like it but I would prefer it to be more restrictive out of the box. Such as have apps declare a list of urls the are permitted to contact , a browser could have * .
I'd like a more granular filesystem list too more akin to apparmors were each file path needed is explicitly defined, in some cases you would need a wildcard or a directory but for most apps this could be done.
It's pretty good for desktop apps, but it doesn't provide CLI applications, so I still have to rely on the AUR. There are some issues with it, but overall I think it's the best solution we currently have. And it's very easy to use, which is great for new users and it will become important if Linux continues growing like this.
It's the easiest solution to packaging software for Linux that doesn't mean it's good, In fact fhe way no dependencies are shared absolutely wrecks my hard drive and makes everything super long (downloading, updating, etc...).
Where it shines is security but to be honest do you really need an open source app to be in it's own secure sandbox?
I vastly prefer nix and I wish packaging stuff for it was easier.
As other have pointed out, saying that "no dependencies are shared" is a very missinformed take, given that sharing dependencies as runtimes is an integral part of Flatpak's structure. But what makes it even funnier and more obvious that you don't know what your talking about, is that you than cite Nix as something you "vastly prefer" when Nix actually deals with dependencies in a very similar way to Flatpak. From the official site:
You can have multiple versions or variants of a package installed at the same time. This is especially important when different applications have dependencies on different versions of the same package — it prevents the “DLL hell”.
In both Flatpak and Nix, apps will only download a different version of a dependency when they need it. This ensure that, instead of breaking, the app will work the same on any system (be it an old stable Debian or a bleeding edge Arch system), without requiring devs to create monkey patches that they have to maintain as things evolve. It has the potential to immensely reduce the burden on app devs and maintainers, and make it a lot easier to make apps for Linux.
I personally think it is trash..
From Wikipedia, the free encyclopedia
Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).
Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.
Community icon by Alpár-Etele Méder, licensed under CC BY 3.0