Currently you can have cases where there's "can acquire arbitrary permissions" next to "no XYZ access". These two statements are obviously in contradiction, either the app can acquire any permissions or it can't.
Proposal:
- When a high-risk permission overrides other permissions, we upgrade those other rows to the highest possible risk state (e.g. in this case
No User Device Access -> User Device Access)
- If arbitrary permissions are enabled, show a row for each possible type of permission, even if it's not individually mentioned in the manifest (e.g. full DBus access and the like)
- Because the risk goes up as you acquire more permissions (e.g. camera or file access is more dangerous if you also have network access), make all permission icons red if arbitrary permissons/X11/etc are enabled. Verified and Free Software would remain green since they're unrelated.
- Hide duplicated permissions: If the app has full file system access, there's no point showing 10 random additional specific folders it also has separate access to, it just makes the list harder to parse
Currently you can have cases where there's "can acquire arbitrary permissions" next to "no XYZ access". These two statements are obviously in contradiction, either the app can acquire any permissions or it can't.
Proposal:
No User Device Access->User Device Access)