Fantastic decision, hopefully other distros follow the same decision and eventually by default no unverified apps are being displayed to users.

If you disagree I ask you this - What is the end goal of Flatpak?

Should the goal not be to eventually have companies like Microsoft, Google, Adobe, along with open source projects like Inkscape, Blender and Krita, all maintaining their own Flatpaks for their apps on Flathub?

The problem with a Flatpak app that is unverified - aka an unofficial third party maintained Flatpak of an application - is that the original developers, who are the only ones who have the power and authority to fix things have absolutely no involvement.

For an app that is currently unverified, if anything is currently broken in the Flatpak UX, the app developers, don't care. They would rightfully say: "I don't care if your Flatpak version of our app is broken - we didn't put out a Flatpak version of our app, we didn't endorse it, we didn't tell you to use it, we supplied our own official version of the app that we recommend, you should be using that, not coming to us with issues about something we have nothing to do with".

The situation as it currently stands, has unverified and verified Flatpaks side by side in the search results for users, who are not going to notice or care about a little tickbox next to some icons and not others, and expect an app called 'Spotify' for example, with the Spotify logo, that connects to Spotify, and looks like the Spotify official app - to be created and maintained by Spotify, not 'John Smith, random internet open source community member' - and even if they understand it's not official, they would still expect it to work.

And when they raise their complaints to the third parties often maintaining those Flatpaks, the answers they get are often not satisfactory. Complaints are often either blown off or ignored, responses to "The sandbox breaks function XYZ that I need in the app" are often met with "Too bad, mah precious security sandbox" type answers.

And even when the third party does care and is willing to do anything they can to help ensure the app works and is reliable, in many cases there's nothing they can do, since fixing the problem would mean getting the developer upstream to make changes to the app to accommodate Flatpak's eccentric requirements.

When a user installs a Flatpak and has a bad experience in an unverified app, due to Flatpak sandboxing breaking the application, and go online to investigate why that is happening, and discover the root cause of the problem is, 'Well it's because the developer has no involvement in the Flatpak, it's basically a hack', they're going to conclude 'Oh, so, Flatpaks suck'.

This is already happening every day.

So in my opinion, long term, what we should want is eventually ALL apps on Flathub to be 'Verified' apps. To be maintained by the app developers themselves, and for those app developers to actually care if their software works well as a Flatpak or not.

And for users, the best thing we could do for them, to ensure people have a good experience with Flatpaks and want to use/adopt them, (to incentivise developers to support Flatpaking) is to ensure users have good experiences by shepherding them towards Verified apps.

And this change doesn't restrict anyone's ability to use non-verified apps either. It's a simple tickbox, tick it and you got access to everything. But at least by having a tickbox, it forces the user to be consciously aware of what they have signed up for, and what they might experience, which will make the user far more sympathetic when something goes wrong.

The only people who won't find that tickbox are the people who probably should be sticking to verified apps anyway, because if they can't find that tickbox, they aren't going to find Flatseal or a random Github issue that tells them which permission they need to change to access files on an external drive, or whatever other random issue they end up having.

This is a good change, and in my opinion, is a change which should have been present with Flathub and Flatpak on all distros from day 1. Pushing unverified third party packagings of apps in sandboxes that they weren't designed for, only hurt Flatpak's reputation.

So what's the point of having a mechanism that only verifies the author of a flatpak submission has write access to some random hosting/domain they selected. It proofs nothing in terms of integrity, confidentiality or even authenticity. Not to mention that your flatpak could build its binaries from sources at any kind of hosting/domain that is completely unrelated to that unique identifier. There's nothing linked to it. Nothing at all, except the blue check mark.

So how is my complaint invalid? Please explain.

As mentioned before I know at least one FOSS project which has this problem. It's published under GPL3 and it's still now blocked on Mint by default. If the idea was to block free software for your users, well done I guess.

How about you point out the exact project in trouble? We will see what went wrong more clearly. Personally, if I own a hobby project but (1) I don't host it in any big-name open source software hostings and (2) I don't maintain or control any website accessible to the internet either, I won't mind if I can get my hobby project listed in Flathub as "verified app". This hobby project is going to be for my own use plus a few friends only anyway. It is reasonable for strangers to not take my hobby project seriously.

Sure, for proprietary apps this sort of verification method from Flathub might work.

Adding an app required a commit on the flathub repo, so if this commit is signed and the app's release commit (or tar ball or binary flatpak) is signed with the same key, then this would also verify that the one "uploading" the app is also in control of its repo.

The project I have in mind is called "Manuskript". The website for it is hosted by the original maintainer of the project which started it. But since he didn't have the time to contribute or maintain it, that role moved - even multiple times. This is also some behavior which is to be expected for FOSS projects since they usually don't have a proper financial stability, neither do they die when maintainers or original authors stop contributing. Because FOSS is shared entirely with the community.

I think one downside is that proprietary apps won't have the possibility to sign commits. But as alternative they could simply sign the published binary. So something like this should work for all in theory.

besides only a few people actually signing commits

If you take the recent XZ fiasco in mind, I hope you can see why Flathub is unforgiving in particular to situation similar to your "Manuskript" project. One might even say this kind of "the original creator being out-of-touch but the project lives on the original creator's reputation" may be what Flathub specifically target against. I guess Flathub is pushing project like yours to either (1) nudge the original creator to come back to at least perform the minimal responsibility, or (2) rename the project a bit so that it no longer stands on the reputation of the original domain name or the original author.

If the original creator of a project is still alive and contactable, in theory they can either (1) upload the latest hash file periodically, or (2) share or transfer part of the domain access right to the new maintainer they trust. If neither can be done because the domain is mainly for personal use and the situation of the original creator is so bad that they can no longer access internet regularly, maybe you shall consider a change of the project domain name now, before the personal website collapse on a random day.