I apologize if I sound nitpicky but I don’t think it’s a great comparison as the clipboard being insecure/sniffable is a much more prevalent issue than the issues with electron and people should be aware of it, both on android and desktop.
Most apps don’t ship EOL electron, and PG shouldn’t (and to my knowledge doesn’t) recommend poorly maintained apps anyway.
It’s still an issue to be behind chromium but at least it seems that the non-EOL versions of electron have severe vulns patched quickly.
I’d argue that it could still be worth a blog post (or similar) as it can be a problem for people with higher threat models. You don’t have to outright recommend against these apps, but it may be useful to mention the pros and cons somewhere.
I agree that it is an even bigger issue than this one, and the fact that even that issue is not worth fearmongering over proves that this Electron issue is not worth fearmongering over either. This is precisely my point
I recognise this and have already moved past the idea of outright recommending against Electron long ago, as evident in some of my previous posts and my renaming of the thread (although it could have been better renamed lol). I think a blog post about Electron concerns would be a much better idea and leaves it up to the user to decide if they still want to use Electron or not.
This way, newer users will be making a much more informed decision regarding their desktop app usage rather than first being reliant on Electron and then finding out later that they are concerned with the security implications it brings.
Edit: I’ve made the title clearer to reflect a more realistic approach and added an edit to the original post to explain the change.
Not really sure what else you mean by “go around warning every GrapheneOS user of the dangers of the system clipboard”. It’s the second entry in their privacy and security section
