With a bit of modifying code to use the color picker and maybe rearranging the workflow to adapt to the new system, apps as advanced as DaVinci Resolve and LibreOffice can have permissions as restrictive as this (the network permission would of course may be needed but it would still be marked as Safe by Flathub).
You can use the file picker API to open the files or folders your app would need to access while having no filesystem permissions at all. You can access the camera, microphone, and GPS without the user devices portal, by simply using the respective portals where the user has the power to allow or deny access to such devices as they wish.
You can record the screen, take a screenshot, and pick a color in the screen by simply calling the proper portals, with the bonus that the user will be able to select if they want the entire screen, a specific window, or a specific area to be recorded/captured and whether the cursor should be shown or not.
Heck, even TeamViewer can be as this restricted without losing any functionality if they use the Screen Cast portal which allows apps to mirror input from a remote device! They would of course need the network permission, but that’s still safe.
There’s Obfuscate, an image redactor, and Metadata Cleaner which is self-descriptive. Both works properly without any filesystem access at all, because they use the file picker portal to ask the user for the files to be processed.
This could well be an advanced video editor or an office suite if they take full advantage of the portals API without losing any functionality. Well, they can have the network permission, it would still be safe anyway.
On much more recent driver versions Wayland support has been further improved. I suggest going with Fedora Silverblue since RPM Fusion is pretty quick to roll out new driver versions.
Here in the Philippines, we’re on full-blown Christmas decors since late August. Complement Halloween decor will be temporarily around a few weeks in late October. The Christmas decor is dismantled early February and replaced by Valentine’s decors.
I find the complaints of other people on this thread weird, for me I see nothing wrong with early Christmas decorations, and your region is already too late anyway. But I do want to hear about why some people find this infuriating.
I just hope GNOME’s developers would stop being so insufferable. Lots of Wayland extensions and FreeDesktop portals unimplemented on GNOME because of the developers’ stubbornness. These also adversely affect to other DEs and WMs and Wayland’s evolution itself because other DEs would have less reasons to support a standard if one of the largest DEs themselves don’t support it.
I really love GNOME because it’s polished, but if KDE would be just as polished I will immediately switch. I know KDE works really hard to make the DE and the apps in general as polished and modern as possible, but I can’t still help but feel better at GNOME.
One example is the color scheming protocol by FreeDesktop. You can now make your apps look greenish or purplish or whatever color you want regardless of the toolkit they’re made with. Right? Well no, because the insufferable GNOME developers keep blocking the proposal because they want the colors to be hardcoded by the DE. They were offered a compromise where a DE can just offer a limited, curated color picker to the user when they go to the theming settings and allow any arbitrary color hidden behind commands, but the insufferable GNOME developers said no. And the proposal, last time I heard, is still stalled because of GNOME.
The best solution would be to install Prism Launcher from Flathub. This method is better than relying on downstream projects like PollyMC which may have delayed updates and be abandoned anytime: To avoid having to sign in to Microsoft spyware to play, do the following, credits to this guide:
First, open Prism Launcher, then close it. This is to ensure that the account data has been initialized.
Third, open Prism Launcher, press the account button on the top right, create an offline account, and set it as the default account by pressing the Set as Default button on the right side of the list. After this, delete the No Profile account by pressing its entry on the list and selecting Delete on the right side of the list.
Done! You can now play Minecraft without the Microsoft account BS.
Note that I do not support piracy, but I cannot tell you to buy Minecraft first before doing this because I don’t want to be a hypocrite. lmao i didn’t notice what community i’m on lol
Well, no matter how I trust my photo editing app, it has no business accessing my thesis documents. Proper filesystem sandboxing does security properly.