Nevermind that you can compile them from source, and presumably verify the checksum of the developer provided flatpack if you do it just so. Am I missing something about flatpacks, or even snaps, or is OP?
Verifying the checksum like that requires Reproducible Builds, which you don't get for free. The compiler output has to be bit-for-bit precisely the same, no matter where you run the build, which is rarely the case by default.
Nevermind that you can compile them from source, and presumably verify the checksum of the developer provided flatpack if you do it just so. Am I missing something about flatpacks, or even snaps, or is OP?
Verifying the checksum like that requires Reproducible Builds, which you don't get for free. The compiler output has to be bit-for-bit precisely the same, no matter where you run the build, which is rarely the case by default.
https://en.wikipedia.org/wiki/Reproducible_builds