Not the first time this has happened, but recently the Snap store from Canonical hosted a scam bitcoin app that claimed to be Exodus wallet that caused a user to lose money.
Flathub has manual submission verification though, which includes the steps to build flatpaks. Reviewers (currently) would definitely catch fishy looking apps.
They’ve also implemented manual reviews in case of metainfo or flatpak permission changes, another thing for additional safety.
Most people get their flatpaks from the same handful of places though, right? Flathub and ??
This isn’t a snap specific issue is what he is saying. It could happen to other stores.
Also, my snap nextcloud is amazing and was the easiest to set up and maintain.
Flathub has manual submission verification though, which includes the steps to build flatpaks. Reviewers (currently) would definitely catch fishy looking apps.
They’ve also implemented manual reviews in case of metainfo or flatpak permission changes, another thing for additional safety.