Event JSON
{
"id": "ff347a7e94fceae58bdedd939927561b8f00339a6617ca75be6dc1ee100e2ed4",
"pubkey": "f83fc6145057e57deec8b903d2ee761d8cde778b6f5ba8d50947c55ebdd9fb52",
"created_at": 1728654811,
"kind": 1,
"tags": [
[
"p",
"2ffa8eb4af9e3ea1900c461683d5ddfd77c81dc2998b47f5eb1ddc7a7e69ff30",
"wss://relay.mostr.pub"
],
[
"p",
"1d95c32d9a9d95a54f98eb2eaa156f3d3a71dc49eca2c960b2b89962758f1cc0",
"wss://relay.mostr.pub"
],
[
"e",
"3e94d46ec13c583bd1c9d0f51d125b268912f9d1b385772bb5a5bd70a3731d3c",
"wss://relay.mostr.pub",
"reply"
],
[
"proxy",
"https://fosstodon.org/users/swick/statuses/113289121724255286",
"activitypub"
]
],
"content": "nostr:npub19lagad90ncl2ryqvgctg84wal4mus8wznx950a0trhw85lnflucquphm4g And one thing that has been problematic in the desktop world is the fact that flatpak doesn't allow for sub-sandboxing which destroys the security measures of e.g. web browsers. We also can't track e.g. when an app like steam starts a sub-app. A big reason for all of that is that we don't mount cgroupfs and don't allow namespaces so that we can inspect /proc/$PID/root/.flatpak-info (yes, we can mitigate the race).",
"sig": "18035adb2805e330aaccb26899ddc651eee9a6b6e667b50078724f60ebacce01bf9e5a4ae0804420b17f92e3182835768bffbe3347d3e604991d6c0b2a76dca8"
}
