Microphone access flathub?

[Mr-Bajs]

Your question

If you click on on the potentially unsafe Fheroes2 on Flathub you'll get an windows showing what it means.

They are fine i suppose, except the issue that says is got access to you device microphone. It this a wrongful statement from flathub or why does Fheroes2 has access to the players microphones?

[oleg-derevenetz]

Fheroes2 itself doesn't access the microphone, but probably SDL does. It may somehow initialize it or something like this.

[ihhub]

I think this is something to do with this file and more precisely --device=all option. According to this documentation this flag enables every device on a system:

While not ideal, --device=all can be used to access devices like webcams, CD/DVD drives etc.

Also this option:

--socket=pulseaudio - Access to PulseAudio, includes sound input (mic), sound output/playback, MIDI and ALSA sound devices in /dev/snd

[Mr-Bajs]

The latest version of flatpak 1.16 now allows for a more granular access to devices.

USB & Input Devices

Two new features are present in Flatpak 1.16 that improve the handling of devices:

The new input device permission
Support for USB listing

The first, while technically still a sandbox hole that should be treated with caution, allows some apps to replace --device=all with --device=input, which has a far smaller surface. This is interesting in particular for apps and games that use joysticks and controllers, as these are usually exported by the kernel under /dev/input.

https://feaneron.com/2025/01/14/flatpak-1-16-is-out/