Yeah, people keep correcting me by reiterating exactly what I’m saying lol

The difference is they test the core packages they release. That’s their selling point. Just downloading old pkgbuilds without vetting anything is called an attack vector.

The AUR just hosts pkgbuild files, no source or built packages. The pkgbuild can point to arbitrary external sources that could update separately. Manjaro could have their own AUR that hosts old pkgbuilds, but that wouldn’t be foolproof since the external sources could change. Also, if a pkgbuild was updated for security reasons, now Manjaro is putting users at risk by continuing to serve the old version, and now that’s another problem for them to solve.

deleted by creator

I used Manjaro up until a couple of years ago. I don’t recommend it now. I switched to endeavor os. I hear cachy os is another popular arch based one these days.

IMO they should have made this the official policy instead of adding optional support for the AUR in pamac.

At the end of the day, the AUR is just a pastebin full of pkgbuild files for people who know what they’re doing. And as a distro aimed more at the average Linux user, rawdogging the AUR probably just shouldn’t be part of the equation.

Heh your “precise” statement is literally what I said:

Open source does literally mean [source code can be viewed]…[it’s not the case that] source code being viewable means it’s open source

Cheers.

Open source does literally mean that. But it doesn’t mean that everything you build using open source is itself open source by proxy.

Edit: ah, I see now, you meant to say “written by someone who thinks source code being viewable means it’s open source”.

Good luck!

Alright, windows users, do you run the same version of windows on all your devices? Yes? Oh how surprising.

A bunch of people who couldn’t tell their left shift from their right shoelace think you don’t know what you’re talking about lol.

I agree, to a person who knows the machine, an AI is like a compiler: you know the output you’re going for, the tool helps you get there faster. Expecting you to do something the slow way because someone else doesn’t know how to code is nonsense. There is a massive difference between using it as a tool, and blindly taking generated code.

If the internet existed in the 70s, I bet people would have asked for a disclaimer on compiled assembly.

I’ve not heard of those, but to me this is a competitor to the much more ubiquitous Obsidian. Which works great, and has a whole community of support, but is not open source.

Personally, I don’t need my notes app not be responsible for syncing across devices either. I already have that for other file types (photos, media, etc).

I’m not against these features being added, but this app is young, afaik it’s one person writing it, so I’d rather see their time be spent making the note taking experience as good as it can be.

I also generally wouldn’t trust one person to properly audit the security of the networking and encryption features. If I wanted those features, I’d still give the community time to peruse the codebase.

I think it makes sense to handle this at a lower level. After using other notes apps, the thing I want is for it to not have some arbitrary opaque file hierarchy that locks me into it. I want a plain dir of .md files, some resources they link to, and that’s it. If I want disk encryption, there are solutions for that. I can use something like LUKs to encrypt my whole drive, or even just the notes directory.

For android, afaik everything uses disk encryption by default.

The unix philosophy is do one thing really well. We don’t need a note taking app that also handles encryption.

No one has ever gone out of their way to run windows. At least not in 25y.

That seems as reasonable as suggesting they could pass a law requiring everyone to hire a govt licensed computer user in order to interact with their devices, and otherwise touching a keyboard or touchscreen would be illegal.

It doesn’t feel like a realistic estimation of what they would actually try to do. There’s too much that is currently dependent on Linux, you’d do better to just dismantle and ban the internet.

Doesn’t even make sense. Virtually all Linux distros can function completely offline. How do you do age verification completely offline? Classic politician who doesn’t understand tech trying to look like they’re doing something to save the kids.

Damn…any good forks of bcache yet?

Ahem, you forgot the Console Wars

I agree. But you see how that’s beside the point, right?

I’ve invented a new type of Vegetarianism: instead of eating veggies for every meal, occasionally you’ll add meat to your diet as well. It’s really the best of both worlds.