Too broad permissions

[mooreye]

SLADE shouldn't have access to your whole home directory. Folders like ~/.slade also shouldn't be created in user's home dir but rather be contained within ~/.var/app/net.mancubus.SLADE/.

GZdoom does this right, quotation from its flathub page:

With Flatpak, all file-access is restricted to ~/.var/app/org.zdoom.GZDoom/.config/gzdoom for privacy reasons. You'll have to manually place your IWADs and PWADS there, or you should use an application like Flatseal to give GZDoom additional permissions.

[Eonfge]

There is a conflict of interest here. On one hand you're right and the SLADE permissions are very broad. On the other hand, Flathub accepts that software development tools have more permissions that runtimes.

I'm also the GZDoom package maintainer, and that really illustrates the difference: Regular users use GZDoom and have their privacy well protected, at the expense of some compatibility and interoperability. SLADE assumes that developers know what they're doing.

I don't think that we should change the permissions right now. Unless upstream fully embraces portals and the latest flatpak standards, it's better to keep it as-is so that SLADE works best.

[mooreye]

Okay, thanks for explanation. Closing this then.