175

Inkscape Flatpak is looking for a maintainer! (github.com)

submitted 2 months ago* (last edited 2 months ago) by boredsquirrel@slrpnk.net to c/linux@lemmy.ml

70 comments fedilink hide all child comments

The Flatpak is already packaged and works well. It just needs to be maintained from a person that joins the Inkscape community.

This would allow further improvements like Portal support and making the app official on Flathub.

Update: One might have been found!

you are viewing a single comment's thread
view the rest of the comments

[-] user@lemmy.one 8 points 2 months ago

Why is the flatpak not verified on flathub? Hmm

[-] Daeraxa@lemmy.ml 45 points 2 months ago* (last edited 2 months ago)

From the conversation it seems to be a similar situation to the project I'm with is in. The flatpak is essentially community maintained rather than being directly supported by the team. To become verified it needs to be done so by a representative of the maintainers of the software. To be verified it doesn't have to have a team member involved in it but this is a requirement Inkscape seem to have imposed.

For us we just aren't in a position to want to support it officially just yet, we have some major upgrades coming to our underlying tech stack that will introduce a whole bunch of stuff that will allow various XDG portals etc. to work properly with the Flatpak sandboxing model. To support it now would involve tons of workarounds which would need to be removed later.

[-] sfera@beehaw.org 1 points 2 months ago

Thanks for the valuable insight.

[-] user@lemmy.one 1 points 2 months ago

Thank you for all your hard work and explanation 🙏👍

[-] woelkchen@lemmy.world 13 points 2 months ago

Why is the flatpak not verified on flathub? Hmm

Because it's not by upstream Inkscape, apparently.

[-] delirious_owl@discuss.online 7 points 2 months ago

Wait till you learn that your flatpak client doesn't verify anything it downloads

[-] corsicanguppy@lemmy.ca 3 points 2 months ago* (last edited 2 months ago)

*'til

But the lack of verification and validation is a huge risk to flatpaks. As someone formerly involved with securing OSes, this kind of thing was scary back then and doubly scary since it entered its "don't confirm; just get in, loser" phase.

[-] user@lemmy.one 0 points 2 months ago

😱 so I guess install via appimage?? Package manager? 🤷 🤯 brain malfunction. Im thinking don't download or install until you verify the download with a hash and hopefully signature if they exist 🤷 use fedora? Which has better security? 🤷🤯

[-] delirious_owl@discuss.online 2 points 2 months ago

Many developers sign their AppImages, but its up to you to verify it

this post was submitted on 25 Jun 2024

175 points (95.8% liked)

Linux

47370 readers

881 users here now

From Wikipedia, the free encyclopedia

Linux is a family of open source Unix-like operating systems based on the Linux kernel, an operating system kernel first released on September 17, 1991 by Linus Torvalds. Linux is typically packaged in a Linux distribution (or distro for short).

Distributions include the Linux kernel and supporting system software and libraries, many of which are provided by the GNU Project. Many Linux distributions use the word "Linux" in their name, but the Free Software Foundation uses the name GNU/Linux to emphasize the importance of GNU software, causing some controversy.

Rules

Posts must be relevant to operating systems running the Linux kernel. GNU/Linux or otherwise.
No misinformation
No NSFW content
No hate speech, bigotry, etc

Related Communities

Community icon by Alpár-Etele Méder, licensed under CC BY 3.0

founded 5 years ago

MODERATORS

nooter692@lemmy.ml

AgreeableLandscape@lemmy.ml

MarcellusDrum@lemmy.ml

cypherpunks@lemmy.ml

cyclohexane@lemmy.ml

d3Xt3r@lemmy.nz