Support us on Patreon to keep GamingOnLinux alive. This ensures all of our main content remains free for everyone. Just good, fresh content! Alternatively, you can donate through PayPal. You can also buy games using our partner links for GOG and Humble Store.
We do often include affiliate links to earn us some pennies. See more here.

After all the issues with Canonical's Snap package scams lately, it seems the Flathub folks are continuing to ensure their platform is trustworthy.

For a while now developers have been able to get Verified on Flathub, and with it they get a nice blue tick to show off on app pages. This shows that the app is directly from the original developer. Now though, they're going a step further as noted on the official Flathub account on Mastodon as they're also now doing Unverified banners on pages that look like this:

As they said: "If you see this, it flags that the app has not been verified by its developer—it’s effectively a community-maintained package." and they continued, "This provides a bit of clarity around the source of apps while helping increase trust for the growing number of verified apps. While we don’t require apps be verified or submitted by upstream developers, we highly encourage it."

They also reminded people that they always human-review every app submission on Flathub. Their team also put up a blog post back in February on some other moderation improvements to apps.

A feature request for Flatpak itself was also opened to show the Verified or Unverified status via the CLI, although there was already a more generic request open on that. So hopefully sometime soon it will show it all clear when you're not installing via an app.

Article taken from GamingOnLinux.com.
24 Likes
About the author -
author picture
I am the owner of GamingOnLinux. After discovering Linux back in the days of Mandrake in 2003, I constantly checked on the progress of Linux until Ubuntu appeared on the scene and it helped me to really love it. You can reach me easily by emailing GamingOnLinux directly.
See more from me
7 comments

They work pretty quickly. A new KDE program, marknote, was recently uploaded to Flathub and was listed as unverified. It didn't even take 12 hours before it was verified.
This is important. While some flatpak maintainers are trustworthy they are still not the 1st party. Stay safe everyone and exercise caution.
Quoting: CyborgZetamarknote
🧐 love me some minimalistic Markdown editor
Been using flathub for a bit, saved me quite a bit of effort of finding the apps I used when I went from Mint to Arch.
Since the xylib fiasco was caused by the dev team of record, I don't see this as any actual protection.
Liam Dawe Apr 3
Quoting: darkoverlordofdataSince the xylib fiasco was caused by the dev team of record, I don't see this as any actual protection.
This isn't related to that, it's more related to the Snap scam apps that kept appearing. That Flathub actually go through verifying the real developers. Two very different situations.
While you're here, please consider supporting GamingOnLinux on:

Reward Tiers: Patreon. Plain Donations: PayPal.

This ensures all of our main content remains totally free for everyone! Patreon supporters can also remove all adverts and sponsors! Supporting us helps bring good, fresh content. Without your continued support, we simply could not continue!

You can find even more ways to support us on this dedicated page any time. If you already are, thank you!
Login / Register


Or login with...
Sign in with Steam Sign in with Google
Social logins require cookies to stay logged in.