I’m trying to determine what updates I should be aware of in any of my installed flatpaks due to CVE vulnerabilities.
Flatpak itself has Security Overview · flatpak/flatpak · GitHub
But I can’t see any similar feed for the flatpaks themselves.
The closest I get is by suscribing to Flathub â recently updated applications in Thunderbird and creating a search folder for the flatpaks I care about.
I’m curious of others here manage this. Nixpks has vulnxscan, npm has the audit subcommand. Ubuntu has a security repo, and a security announce mailing list. What is the Flatpak way?