I'm looking to use the Epic Asset Manager, but I noticed that it's labeled as unverified on Flathub. Can anyone explain what that means in terms of safety? I'm a bit unsure about the contents of the GitHub repository as well.
2 Answers
The safety of unverified Flatpaks really varies. Just because an app isn’t verified doesn't necessarily mean it’s unsafe. A verified app is so labeled because it's maintained or endorsed by the original developer, but that doesn't guarantee security. An unverified app could be managed by a careful third party. Ultimately, it comes down to whether you trust the source or developer.
When you see "unverified", it typically means the app has been packaged by someone other than the original developer. In the case of Epic Asset Manager, it seems the creator submitted it without seeking verification. Flathub has a moderation team that reviews apps and updates, so while you should stay cautious, you can generally feel safe using those apps. Just use common sense like you would with any other source.
Glad to hear there's some vetting process! I always play it safe, but knowing there’s moderation makes me feel a lot better.