So, by using Flatpaks or snaps, you're dependent on the developer to update all dependencies. If he doesn't, your system may stay vulnerable for a long time. But all Apps are sandboxed
Installing Software from your Distro Repo is more practical because it uses the dependecies that are maintained by your distro developers. But are the Apps sandboxed in anyway?
1- Does using Apparmor conider as sandboxing? Because most popular Apps already have Apparmor profiles. What does Sandboxing with Flatpak or Snap mean?
2- Let's say I installed a software from my distro repo (which has an apparmor profile) vs from Flatpak. Which is more secure?