Replies: 2 comments 1 reply
-
|
If an extra configuration had been necessary here, the fork would have been indicated on our website in the app name (if the fork and original have different app IDs) or in the app label (if both have the same app ID) (if we had been aware of it; I didn't notice it in this case, but will now pay more attention to it). There is also the information of who is the author of the app. However, the app configurations on the website come (like everything that is open source, but here with the website in particular) with absolutely no warranty (in terms of up-to-dateness as well as functionality as well as security). Perhaps this should be emphasized on the website. |
Beta Was this translation helpful? Give feedback.
-
It might be worth making this information even more visible
I have similar thoughts - something like "for your own safety, always check if you are downloading an application from the original source and author" Additionally (next to the category) we can add a link to the source which is synchronized (downloaded) from the json configuration file. |
Beta Was this translation helpful? Give feedback.
-
I have just noticed that the author's name only appears in the link for Obtainium but is not visualized on the website. This should be quickly adjusted @ImranR98.
Click on the link in the title of the respective app. |
Beta Was this translation helpful? Give feedback.
-
Hi folks!
People who add configurations to the database do a lot of hard work for the community and deserve a lot of gratitude and respect.
I would just like to point out that they have a huge responsibility, because if a bad actor reports an app that is pretending to be the original, many users can be at risk.
This probably does not apply to advanced users of Obtainium and APPS database (anyone can check the download address), but many beginners and less advanced users will simply click "Add to Obtainium".
What is the current (or future) policy for verifying the author of an app submitted to APPS?
Do we verify and accept in any way only apps from original developers?
I would like to avoid the problem that Flathub currently has - anyone can compile an app that can mislead other users into installing it without thinking (you can't blame them for that).
For example https://flathub.org/apps/net.mullvad.MullvadBrowser
Flathub currently combats this phenomenon by adding an "unverified" or "verified" badge.
Linux Mint added a special switch to hide unverified apps.
For example:
There was recently a #246 (rejected for another reason - there is a general configuration for Github), but I wonder: Is the author "SSimco" or "cemu-project", since it is clearly a fork?
Beta Was this translation helpful? Give feedback.
All reactions