I’m especially concerned about it being somehow broken, unwieldy, insecure or privacy-invasive.

Case in point; at times I have to rely on a Chromium-based browser if a website decides to misbehave on a Firefox-based browser. Out of the available options I gravitate towards Brave as it seems like the least bad out of the bunch.

Unfortunately, their RPM-package leaves a lot to be desired and has multiple times just been awful to deal with. So much so that I have been using another Chromium-based browser instead that’s available directly from my distro’s repos. But…, I would still switch to Brave in an instant if Brave was found in my distro’s repos. A quick search on repology.org reveals that an up-to-date Brave is packaged in the AUR (unsurprisingly), Manjaro and Homebrew. I don’t feel like changing distros for the sake of a single program, but adding Homebrew to my arsenal of universal package managers doesn’t sound that bad. But, not all universal package managers are created equal, therefore I was interested to know how Homebrew fares compared to the others and if it handles the packaging of the browser without blemishing the capabilities of the browser’s sandbox.


P.S. I expect people to recommend me Distrobox instead. Don’t worry, I have been a staunch user of Distrobox for quite a while now. I have also run Brave through an Arch-distrobox in the past. But due to some concerns I’ve had, I chose to discontinue this. Btw, its Flatpak package ain’t bad either. But unfortunately it’s not official, so I choose to not make use of it for that reason.

  • sir_reginald@lemmy.world
    link
    fedilink
    arrow-up
    52
    arrow-down
    1
    ·
    edit-2
    1 year ago

    I’d advise against using Brave, but that’s a different topic.

    Just use the Flatpak. Do not care if it’s official, most packages in traditional package managers are not packaged officially, yet we use them all the time. Check the Flatpak repo instead to see if there’s something wrong.

    Maybe check ungoogled chromium too while you’re at it.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      most packages in traditional package managers are not packaged officially, yet we use them all the time.

      While there’s definitely truth in this, aren’t we already trusting the repos of traditional package manager by choosing to use the associated distro? So, by e.g. choosing to use Debian , you’ve already (somehow) accepted their packages to be ‘thrustworthy’. We already trust the developers of the apps/binaries we use. Therefore, we have two sets of parties we trust by default. I would rather not increase the amount of people I have to trust for software, but I can understand why others might differ on this.

      • stella@lemm.ee
        link
        fedilink
        arrow-up
        2
        arrow-down
        1
        ·
        1 year ago

        Yes, the main source of trust is in the repository and its maintainers when choosing a distro.

  • woelkchen@lemmy.world
    link
    fedilink
    arrow-up
    46
    arrow-down
    6
    ·
    1 year ago

    If you think that Brave is the best option, look up what a scumbag Brendan Eich is and the shady monetizing practices the company introduced.

    • stella@lemm.ee
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Fun fact: the scumbag Brendan Eich who made Brave is the same scumbag Brendan Eich who made Javascript!

      Yay!

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      7
      arrow-down
      7
      ·
      1 year ago

      The bad practices of its CEO doesn’t inherently write off the software, instead the software’s merits should do the talking. Which Chromium-bases browser would you recommend based on its merits?

  • Presi300@lemmy.world
    link
    fedilink
    English
    arrow-up
    32
    ·
    edit-2
    1 year ago

    …why would you use homebrew on linux?

    You already use an arch container that has access to the AUR, which has literally every package, available on linux.

    Also, if anything, flatpaks are THE official (universal) packaging format for Linux, it’s the most widely adopted and most well integrated of the universal packaging formats. I’m not saying that homebrew is bad, just why bother with it when you’ve got 100 other packaging formats that are all better…

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      2
      arrow-down
      7
      ·
      1 year ago

      You already use an arch container that has access to the AUR, which has literally every package, available on linux.

      Call me paranoid if you will.

      if anything, flatpaks are THE official (universal) packaging format for Linux

      I don’t deny that, I make good use of a ton of flatpaks on my system. I also believe that it’s the best we have. And I would literally switch to Brave as a flatpak if it would satisfy the following:

      • Be official and thus maintained by Brave itself.
      • Not having to forego its own more powerful sandbox due to (hopefully) current restrictions of Flatpak. Yes, you read that correctly; while flatpaks are arguably the safest way to consume most applications, this doesn’t apply to apps that actually have stronger sandboxes which had to be ‘slimmed down’ when packaged as a flatpak. Thus, currently, for maximum protection, one simply can’t rely on flatpaks for their Chromium-based browsers. If you choose to do so and it has worked out for you wonderfully; that’s awesome, I’ve been there and enjoyed the experience as well. But, I can’t justify it for myself any longer.
      • Presi300@lemmy.world
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        I rely on flatpaks for all non-firefox browsers and haven’t had any issues with them, I’ve used the brave flatpaks specifically for almost a year now and no issues…

        • zwekihoyy@lemmy.ml
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          it’s still factual that flatpaks sandbox is weak by default, especially compared to what chromium provides on its own.

            • alt@lemmy.mlOP
              link
              fedilink
              arrow-up
              1
              ·
              edit-2
              1 year ago

              Would you mind elaborating? First time hearing this and a quick search didn’t resolve it.

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          1
          arrow-down
          2
          ·
          1 year ago

          I think I already addressed that point with

          If you choose to do so and it has worked out for you wonderfully; that’s awesome, I’ve been there and enjoyed the experience as well. But, I can’t justify it for myself any longer.

          If you meant something else, then please feel free to correct me.

      • Pantherina@feddit.de
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        Officially supported doesnt mean its more stable. They can just take binaries, add dependenciesy tadaa.

        Bubblewrap is not insecure. But I am not an expert

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          Officially supported doesnt mean its more stable.

          Never implied that anyways. Official merely ensures that the amount of trusted parties can be minimized.

          Bubblewrap is not insecure.

          Bubblewrap, when properly applied is indeed excellent; perhaps the best utility to sandbox applications on Linux. I’m thankful that flatpaks makes use of bubblewrap, namespaces and seccomp to offer relatively safe/secure apps/binaries, I’m unaware of any other ‘(universal) package manager’ within the Linux-space that offers similar feats in that regard. Unfortunately, Chromium-based browsers just happen to have an even stronger sandbox -if properly configured- than flatpaks are currently capable of.

          • Pantherina@feddit.de
            link
            fedilink
            arrow-up
            2
            ·
            1 year ago

            Okay true. I am not so much into this Browser sandbox thing and dont really get it. Its a different way than bubblewrap, as from Firefox RPM for example I can open any file and save anywhere. But its process isolation right?

            • alt@lemmy.mlOP
              link
              fedilink
              arrow-up
              2
              ·
              1 year ago

              as from Firefox RPM for example I can open any file and save anywhere. But its process isolation right?

              For Firefox, the verdict on its native sandbox vs Flatpak’s native sandbox doesn’t seem conclusive. With -assumingly- knowledgeable peeps on both sides of the argument, which indeed does raise the question how knowledgeable they actually are. Nonetheless, for myself, I’ve accepted Flatpak’s sandbox to not be inferior to Firefox’ native one. Thus, I don’t see any problem with using its flatpak.

              • Pantherina@feddit.de
                link
                fedilink
                arrow-up
                2
                ·
                1 year ago

                Apart from having all the nice KDE integration and things like Keepass integration, Fido2 keys, drag and drop and some more things…

                Also afaik the Fedora Firefox has a good SELinux profile and it runs damn fast. I did a speed test and it was best, along with Mozillas all-together-binary.

  • Aux@lemmy.world
    link
    fedilink
    arrow-up
    22
    arrow-down
    3
    ·
    edit-2
    1 year ago

    Brave is worse than Chrome. Affiliate link auto injection, unauthorised selling is copyrighted data, their own unblockable ad network, etc. Use Firefox.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      7
      ·
      1 year ago

      Their business-practices sure do leave a lot to desire, which actually does hurt their trustworthiness; arguably their most valuable asset as a privacy-first browser. Hmm…, good food for thought, thank you!

      Use Firefox.

      I mostly do already 😅, from OP: “at times I have to rely on a Chromium-based browser if a website decides to misbehave on a Firefox-based browser.

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          1
          ·
          1 year ago

          Thank you for mentioning that! I had dismissed it due to alleged shortcomings of its security features. While the allegations are (still) there, I’ve never heard any rebuttal or anything else of that matter. Would you happen to know anything in this regard?

  • agitated_judge@sh.itjust.works
    link
    fedilink
    arrow-up
    16
    ·
    1 year ago

    Last time I checked, homebrew on Linux only included cli apps. GUI apps are only available on mac. So you couldn’t use it to install a browser anyway.

  • Helix 🧬@feddit.de
    link
    fedilink
    arrow-up
    15
    arrow-down
    1
    ·
    1 year ago

    What does Brave give you what the other Chromium based browser doesn’t have? Maybe you can install add-ons instead?

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      5
      arrow-down
      4
      ·
      edit-2
      1 year ago

      What does Brave give you what the other Chromium based browser doesn’t have?

      Brave is known to take privacy (and security) more seriously than its contenders. It’s therefore unsurprising to find it recommended by Privacy Guides. Some of its unique features related to privacy can be found here.

      Maybe you can install add-ons instead?

      Excellent extensions like uBlock Origin heavily rely on Manifest v2 in order to do their bidding. Unfortunately, Chromium intends to stop supporting it. Which will inevitably lead to many Chromium-based browsers to follow the lead and stop supporting it as well. At least Brave has confirmed multiple times to support Manifest v2 longer. Furthermore, I’m not aware of any extension that does an equally excellent job at spoofing your fingerprint randomly. Though, I’d love to be corrected on that.

      • Helix 🧬@feddit.de
        link
        fedilink
        English
        arrow-up
        4
        ·
        1 year ago

        Brave is known to take privacy (and security) more seriously than its contenders.

        Nice, their marketing works. If you really cared about privacy you’d probably use something like Librewolf, which is not proprietary.

        Excellent extensions like uBlock Origin heavily rely on Manifest v2 in order to do their bidding. Unfortunately, Chromium intends to stop supporting it.

        It works without issues in Firefox and similar browsers like Librewolf.

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          1 year ago

          Nice, their marketing works.

          You can’t deny its merits. At best you can question their integrity based on bad business-practices in the past. Their CEO being “X” and doing “Y” does not inherently make the software bad.

          If you really cared about privacy you’d probably use something like Librewolf, which is not proprietary.

          From OP: “at times I have to rely on a Chromium-based browser if a website decides to misbehave on a Firefox-based browser

          • Helix 🧬@feddit.de
            link
            fedilink
            arrow-up
            3
            ·
            1 year ago

            You can’t deny its merits.

            Yes, yes I can. It’s proprietary and doesn’t do anything better than Firefox or Librewolf. The latter even has an active community on Lemmy.

            Their CEO being “X” and doing “Y” does not inherently make the software bad.

            I didn’t even mention the CEO, you must have confused my reply. It’s the product being X and doing Y which I don’t like.

            • alt@lemmy.mlOP
              link
              fedilink
              arrow-up
              2
              ·
              edit-2
              1 year ago

              doesn’t do anything better than Firefox or Librewolf.

              Besides the fact that some sites misbehave on Firefox(-based browsers), it does if you’re actually security sensitive; Chromium’s sandbox is simply superior to Firefox’.

              I didn’t even mention the CEO, you must have confused my reply. It’s the product being X and doing Y which I don’t like.

              It’s true that you didn’t mention anything regarding its CEO, but I assumed your comment might be related to it. It seems not to be the case; my bad for assuming and mentioning it and thank you for clearing yourself from that ‘allegation’!

              Would it be fair to assume that your primary gripe with Brave is its (at best) controversial stance regarding the ‘open’ source nature of their product?

              • Helix 🧬@feddit.de
                link
                fedilink
                arrow-up
                3
                ·
                edit-2
                1 year ago

                Yes, and the business practices of the company making it which broke my trust to the point of me assuming they wouldn’t be above breaking the law in compiling spyware or other malware into their closed source product for profit.

                • alt@lemmy.mlOP
                  link
                  fedilink
                  arrow-up
                  2
                  ·
                  edit-2
                  1 year ago

                  Thanks for clarifying!

                  they wouldn’t be above breaking the law in compiling spyware or other malware into their closed source product for profit.

                  I might misremember this, but wasn’t it only something like a key (or something similar) that they held to themselves? And if so, is it even sensible that spyware can be put in their ‘key’?

      • kraniax@lemmy.wtf
        link
        fedilink
        arrow-up
        4
        ·
        1 year ago

        Brave is known to take privacy (and security) more seriously than its contenders. It’s therefore unsurprising to find it recommended by Privacy Guides.

        At least in the privacy community, Brave isn’t super popular. It feels more geared towards the “hyped crypto early adopters”. Brave inclusion in privacy guides has always been controversial.

        Brave is ultimately an advertising company, they base their business model in ads. And everyone knows how bad that can turn.

        Ungoogled Chromium on the other hand takes patches from brave and other Chromium based browsers, removing every bit of telemetry and giving you the cleanest experience you can get on Chromium, without relying on a shady company.

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          2
          arrow-down
          7
          ·
          1 year ago

          Brave is ultimately an advertising company, they base their business model in ads. And everyone knows how bad that can turn.

          Seems more like FUD, but sure.

          Ungoogled Chromium on the other hand takes patches from brave and other Chromium based browsers

          In the past it was simply dismissed due to reasons mentioned here. I don’t have any qualms against Ungoogled Chromium, so I’m not opposed to using it if the stated reasons have been cleared since. But I’ve never got any confirmation on that.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      4
      ·
      1 year ago

      Nix is definitely cool and I already have it installed on my system. Unfortunately, even Nix has trouble with keeping Brave up-to-date at all times. It’s still on 1.59.120, while Brave has had three releases since. It took about 3 days after the release of version 1.59.120 for them to release it on their repos. As you can see, it leaves a lot to desire.

      • Acters@lemmy.world
        link
        fedilink
        arrow-up
        6
        ·
        edit-2
        1 year ago

        It’s a community maintained repo. The possibility of updating it yourself is possible. The master branch is updated to the 1.59.124, which came out a week ago. And was updated around the same time. 1.60.110 was just released 1 day ago. You can update it yourself. After all, it’s supposed to give you a great default state to fall back to, not keep you on the bleeding edge of releases.

        Edir: how to do it yourself and contribute to the community. https://nixos.wiki/wiki/Update_a_package

        • alt@lemmy.mlOP
          link
          fedilink
          arrow-up
          2
          ·
          1 year ago

          The master branch is updated to the 1.59.124

          Brain fart on my side, thanks for correcting me so respectfully 😊!

          Hmm…, maintaining it myself is an interesting thought. Perhaps I should take a look at that, thanks a lot for your input. Much appreciated!

          • Atemu@lemmy.ml
            link
            fedilink
            arrow-up
            2
            ·
            1 year ago

            Minor version bumps should be mostly trivial: Change version and hash, package that into commit+PR (ckeck guidelines on that!) and that’s it most of the time.

            The harder part is QA; ensuring it still works as expected. Therefore, even just testing update PRs as they come in would be a great help.
            If the code change is trivial and a user of the package said it still works for them, a commiter coming along is likely convinced of the PR’s quality and just merges it.

            It’s super easy to contribute to Nixpkgs in a meaningful manner :)

  • tvcvt@lemmy.ml
    link
    fedilink
    arrow-up
    10
    ·
    1 year ago

    My only experience with homebrew is on macOS and I’ve switched to MacPorts there. Homebrew did some weird permissions things I didn’t care for (chowned all of /usr/local to $USER, if I’m remembering right). It worked fine on a single user system, but seemed like a bad philosophy to me. This was years ago and I don’t know how it behaves on Linux.

    I also prefer Firefox, but when I need a Chromium alternative for testing, I opt for the flatpak (or the snap) version personally.

    • Avid Amoeba@lemmy.ca
      link
      fedilink
      arrow-up
      8
      arrow-down
      1
      ·
      1 year ago

      Based on what I saw on macOS I wouldn’t touch Homebrew with a 10 feet pole. We have proper packaging systems in the Linux world. The Chromium snap is supported by Canonical so that’s a great candidate for anything that comes with snap or can use snap. If I couldn’t use snap, I’d use the Chromium flatpak from Flathub.

      • alt@lemmy.mlOP
        link
        fedilink
        arrow-up
        1
        ·
        edit-2
        1 year ago

        Based on what I saw on macOS I wouldn’t touch Homebrew with a 10 feet pole. We have proper packaging systems in the Linux world.

        Could you please elaborate on how the packaging in the Linux world is better? I can imagine why, but I’d rather have a better-informed idea on the matter. Thanks for your input!

        The Chromium snap is supported by Canonical so that’s a great candidate for anything that comes with snap or can use snap. If I couldn’t use snap, I’d use the Chromium flatpak from Flathub.

        I use Chromium from my repo already, but as stated in the OP; I would switch in an instance to Brave if I could.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Homebrew did some weird permissions things

      I should look into this. Thank you!

  • Yote.zip@pawb.social
    link
    fedilink
    English
    arrow-up
    10
    ·
    1 year ago

    I use a few packages from Homebrew and don’t have any problems with it. By default it installs itself into /home/homebrew or something which I didn’t like so I put it into ~/Applications/Homebrew instead using these steps. It warns that you may be forced to compile software if you do it this way but I’m down to clown so whatever.

    The biggest problem I have with it is that you’ll need to keep it updated alongside your regular packages, which I do by aliasing a simple upgrade command that runs all my package manager upgrades.

    I would also recommend ungoogled-chromium as an alternative to Brave, which does have its own official Flatpak (not marked as such but it’s linked to in the ungoogled-chromium project github).

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      2
      ·
      edit-2
      1 year ago

      By default it installs itself into /home/homebrew or something

      I don’t like that either. Thanks for that insight and thanks for sharing the link to change that!

  • j0rge@kbin.social
    link
    fedilink
    arrow-up
    8
    arrow-down
    1
    ·
    1 year ago

    I use homebrew on linux, you’re not going to get GUI apps that way though, the linux binaries are almost exclusively cli apps and libraries, etc.

  • Krause [he/him]@lemmygrad.ml
    link
    fedilink
    arrow-up
    10
    arrow-down
    4
    ·
    edit-2
    1 year ago

    I tried Homebrew once in a VM and didn’t like it, I felt it was too invasive.

    1. https://github.com/Homebrew/install/blob/85c5f4b57452dbd1c7ebc01a021548d2ceaf2b64/install.sh#L173

    Why does it create another user and put files under /home/linuxbrew/? Answer:

    The script installs Homebrew to its default, supported, best prefix (/opt/homebrew for Apple Silicon, /usr/local for macOS Intel and /home/linuxbrew/.linuxbrew for Linux) so that you don’t need sudo after Homebrew’s initial installation when you brew install.

    Where’s the logic in that? Why not just install to the user’s home directory so that you don’t even need root access in the first place?

    1. https://github.com/Homebrew/install/blob/85c5f4b57452dbd1c7ebc01a021548d2ceaf2b64/install.sh#L222

    Why is sudo hard-coded? Answer: it’s to prevent people from using doas and other sudo alternatives.

    1. https://docs.brew.sh/Installation#untar-anywhere-unsupported

    Why is installing from the tarball unsupported and so frowned upon? FFS isn’t this just supposed to be a package manager? Why is everything so complicated and opinionated when compared to pip, cargo, Flatpak, etc? Compare this mess to Golang’s install and uninstall process where you literally just need to tar -xzf a file or rm -rf a directory.

  • Irdial@lemmy.sdf.org
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    1
    ·
    1 year ago

    I’ve been using Homebrew on Linux for several years and never had an issue. As others have said, it will not be able to provide GUI applications (in most cases) as on macOS, but it is a great way to get system and indie software alike

  • mufasio@lemmygrad.ml
    link
    fedilink
    arrow-up
    5
    ·
    edit-2
    1 year ago

    Once x86 macOS became stable around snow leopard I switched from Linux to macOS full time on my mobile machines. For years home brew was a shining light to get a decent tool chain installed to be able to do development. But somewhere around the time they changed to naming macOS releases after places in California, both home brew and macOS started changing in ways that made it harder to maintain a stable development environment. Why and when did it start deciding to upgrade every package I have installed when I try to install a new package? It regularly broke both mine and our developers’ machines and I finally had enough of both. Stay away from home brew if you want your working development environment to continue working 6 months later. It WILL break when you need it most and cost you hours if not days of work to fix. I’ve never ran home brew on Linux but it’s honestly not anything I would ever consider even when it worked well.

    • Atemu@lemmy.ml
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      I can highly recommend using Nix on macOS! We never randomly update your apps (wtf?)

      • alt@lemmy.mlOP
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        I would love to consume Brave as a nixpkgs, unfortunately it’s mostly not up to date; which I simply can’t accept.

  • stella@lemm.ee
    link
    fedilink
    arrow-up
    4
    ·
    1 year ago

    Not sure why you would want to.

    Linux package managers are state of the art.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      1
      ·
      edit-2
      1 year ago

      Not sure why you would want to.

      😅, it’s explained in OP.

      Linux package managers are state of the art.

      I wonder if Nix-users would agree 🤔.

    • alt@lemmy.mlOP
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      You can also use AppImages.

      I’m not necessarily opposed to it, as I do use them if they’re inaccessible to me otherwise and if it’s official and up-to-date. But for security-sensitive apps (like a browser) I would rather not rely on it. Furthermore, it seems it’s unofficial anyways.

      https://portable-linux-apps.github.io/

      This is a cool resource. Thank you!