Linux applications can access your entire home folder
That’s the default because that’s what most people want, or at least expect.
You can perfectly start an application within a container or even a dedicated user.
Nearly nobody does this not because Linux does not permit that, it does, but rather because most people believe (rightfully or not) they do not need this level of separation.
True, but asking user about permission to home folder vs. granting permission by default is huge difference. Also doesn’t flatpak also grant other permissions the app wants as well? Like the Mic permission.
That’s the default because that’s what most people want, or at least expect.
You can perfectly start an application within a container or even a dedicated user.
Nearly nobody does this not because Linux does not permit that, it does, but rather because most people believe (rightfully or not) they do not need this level of separation.
True, but asking user about permission to home folder vs. granting permission by default is huge difference. Also doesn’t flatpak also grant other permissions the app wants as well? Like the Mic permission.