Change Details

=Description= User expectation of security has changed over recent years. Android and iPhones are in a much better state than the Linux desktop, and we are catching up. A key part of that is the ability to restrict the impact of any unfavourable behaviour through sandboxes. With Flatpak and Snaps available we are starting to see this become available for applications but we are not up the standard we should be with the rest of our infrastructure. We are also seeing distribution methods like Flathub increasingly make the warnings for additional permissions increasingly more severe. Our applications coming with warnings attached has the potential to put off potential userbase. This is a task that is completely unappreciated and boring, for the majority case the user is completely unaffected by improvements we make... until something bad happens. This goal is about making pre-emptive steps to avoid problems later. =What it will take= **Concrete Technical Actions** - Box our our icon extraction - Box dolphin and Baloo's file metadata extraction - Box network KIO runners away from anything irrelevant - Box Akonadi and other network processing tools **Open-ended goals** - Make our flatpak distributed apps use the correct limited permissions where possible - Moving towards a "portals first" approach in our frameworks - Improve portals for sharing content between sandaboxes - Creating infrastructure to move 3rd party Plasma addons into sandboxed containers - Moving away from scriptable content in user-retrievable add-ons where possible =How we know we succeeded= We should end up in a situation where not only can we can be self-confident in our code, but also resistant to handling rogue files even if security issues exist anywhere in the stack. Most importantly users should feel confident in using our software too. I would spend any goal budget on security audits on this. =Relevant links= =Champions= The team is: * David Edmundson * XXX * XXX =I am willing to put work into this= * add your name =I am interested= * @apol * @akselmo

=Description= User expectation of security has changed over recent years. Android and iPhones are in a much better state than the Linux desktop, and we are catching up. A key part of that is the ability to restrict the impact of any unfavourable behaviour through sandboxes. With Flatpak and Snaps available we are starting to see this become available for applications but we are not up the standard we should be with the rest of our infrastructure. We are also seeing distribution methods like Flathub increasingly make the warnings for additional permissions increasingly more severe. Our applications coming with warnings attached has the potential to put off potential userbase. This is a task that is completely unappreciated and boring, for the majority case the user is completely unaffected by improvements we make... until something bad happens. This goal is about making pre-emptive steps to avoid problems later. =What it will take= **Concrete Technical Actions** - Box our our icon extraction - Box dolphin and Baloo's file metadata extraction - Box network KIO runners away from anything irrelevant - Box Akonadi and other network processing tools **Open-ended goals affecting all KDE** - Make our flatpak distributed apps use the correct limited permissions where possible - Moving towards a "portals first" approach in our frameworks - Improve portals for sharing content between sandaboxes - Creating infrastructure to move 3rd party Plasma addons into sandboxed containers - Moving away from scriptable content in user-retrievable add-ons where possible I would spend any goal budget on security audits. =How we know we succeeded= We should end up in a situation where not only can we can be self-confident in our code, but also resistant to handling rogue files even if security issues exist anywhere in the stack. Most importantly users should feel confident in using our software too. =Relevant links= =Champions= The team is: * David Edmundson * XXX * XXX =I am willing to put work into this= * add your name =I am interested= * @apol * @akselmo

=Description= User expectation of security has changed over recent years. Android and iPhones are in a much better state than the Linux desktop, and we are catching up. A key part of that is the ability to restrict the impact of any unfavourable behaviour through sandboxes. With Flatpak and Snaps available we are starting to see this become available for applications but we are not up the standard we should be with the rest of our infrastructure. We are also seeing distribution methods like Flathub increasingly make the warnings for additional permissions increasingly more severe. Our applications coming with warnings attached has the potential to put off potential userbase. This is a task that is completely unappreciated and boring, for the majority case the user is completely unaffected by improvements we make... until something bad happens. This goal is about making pre-emptive steps to avoid problems later. =What it will take= **Concrete Technical Actions** - Box our our icon extraction - Box dolphin and Baloo's file metadata extraction - Box network KIO runners away from anything irrelevant - Box Akonadi and other network processing tools **Open-ended goals affecting all KDE** - Make our flatpak distributed apps use the correct limited permissions where possible - Moving towards a "portals first" approach in our frameworks - Improve portals for sharing content between sandaboxes - Creating infrastructure to move 3rd party Plasma addons into sandboxed containers - Moving away from scriptable content in user-retrievable add-ons where possible I would spend any goal budget on security audits. =How we know we succeeded= We should end up in a situation where not only can we can be self-confident in our code, but also resistant to handling rogue files even if security issues exist anywhere in the stack. Most importantly users should feel confident in using our software too. I would spend any goal budget on security audits on this. =Relevant links= =Champions= The team is: * David Edmundson * XXX * XXX =I am willing to put work into this= * add your name =I am interested= * @apol * @akselmo