I really want to use Bazzite but I also have concerns about their supply chain. Last I checked, they automatically update all packages in their releases. Many of them are from copr, including kernel patches. The release notes do list package version changes, but as far as I can tell there is no human review.

I realize that, in a way, it's no different than installing from AUR or ppa's, but something about both of those (and the fact that package installs are manual) feels safer than copr packages with fewer eyes on them...

▲

prmoustache 5 hours ago | parent [-]

Honestly if the point is to run proprietary software like commercial AAA games, the supply chain is already compromised.

I treat my gaming computer as a video game console, it wouldn't occur to me to share passwords, accounts, data or anything sensitive on my gaming machine. And I only connect it to the network if I need to download a game/update.

	▲	Gigachad an hour ago \| parent \| next [-]
		Considering how many games require literal malware for anti cheat. It’s the only sane way to do gaming. Just let the games and proprietary junk have their own environment with total control. But with none of your sensitive data.
	▲	moltopoco an hour ago \| parent \| prev [-]
		My understanding is that a lot of the games on Steam are actually executed in some kind of sandbox, but I am sure if that is just for compatibility/emulation reasons, and which directories are still accessible in that case. I wish there was better documentation for this, because "random indie game demo cannot upload my family photos" would be a great selling point for SteamOS/Bazzite. As it stands, the Steam flatpak is probably the safest way to play games (which does not work on Bazzite).