Lemongrab

Also nice because you can better isolate these Android apps instead of Waydroid which intentional has no isolation or selinux policies and runs in a rootful LXC container.

According to the Gitlab repo for the Android transition layer, yes.

Notesnook has a desktop app. Does it not work with self hosted implementation?

I haven't had great success, it causes more problems than it is worth if you aren't willing and knowledgeable to troubleshoot any finicky behavior. The nvidia drivers just end up causing a headache. I would never recommend anyone buy an nvidia GPU if they dont have a specific requirement like run local AI/LLMs using CUDA or raytracing (I guess). AMD can also run local LLMs using ROCm, just not supported for 5000 series or lower.

The only Linux distro I (and my friends) have had any success with nvidia GPUs is Bazzite/Aurora. Bazzite is gaming focused and has special nvidia OS images.

AMD is easier to use with Linux. Get a rx6700xt or greater.

Some/most places outside the USA heavily rely on WhatsApp for communication. This is like saying "you dont need to be able to talk with your friends, family, or employer"

The one-line command I recommend for install Mullvad's RPM repo is as follows:
curl --tlsv1.3 -fsS https://repository.mullvad.net/rpm/stable/mullvad.repo | pkexec tee -a "/etc/yum.repos.d/mullvad.repo"

My explanation: This curl command enforces strong TLS encryption and pipes the fetched repo file to the tee (append) command, which requests to run with root permissions and appends the file to the specified path. pkexec is useful instead of plain sudo because if the current user isn't in wheel/sudo groul it requests the local admin account to authenticate.

You can give a Flatpak the necessary permissions to modify disks. All the permissions needed by Veracrypt could be granted.

Maybe the KDE gear and K on the top side? Or maybe the KDE neon logo. I'd look at KDE clipart.

Basically, Flatpak stops Firefox from using its normal security measures for isolation. Librewolf (a fork of Firefox) has the same problems resulting from Flatpak.

Also, what do you mean the distro repo will update never? You just type the update command (eg. sudo dnf update -y) and software gets updated. If you dont like manually typing command, just set it up to auto run at boot.

Flatpak doesnt let the browser use its normal sandboxing for process isolation using user namespaces. Read more here or search on the web for "flatpak weaken browser security": https://discussion.fedoraproject.org/t/security-problems-with-flatpak-browsers-firefox-chromium-bubblejail-seccomp-user-namespaces/121109/5