The community can only read the source code, as of yet. All of the source code has been provided by a set of internal developers.

The fact that it is open source means that, if somehow two malware elements have made it into the source code, then someone will eventually report it. But this doesn’t mean that two malware elements cannot be there right now.

These two malware hits on total virus scan should be communicated to the developers.

Locally, an attacker still needs to know your password. A strong password can make it too expensive or impractical to brute force.

Filen.io

Works well so far, is end to end encrypted, open source, and the apps are nice and solid.

Another example

Trending Communities for Friday 22nd September 2023

Testing feedback:

The links in this post don’t load, https://feddit.nl/post/3654890

Testing feedback: There appears to be a missing feature. When a post includes a gallery of images, no thumbs or images are shown as a preview. Only an empty gray box is displayed.

I went over to their Discord server and here’s what I was able to glean.

I gather they run a web-facing server which accepts text I/O from your Textual apps running on your personal machine or server, probably as a daemon. The connection between these two is via normal TCP/IP connections which your firewall already allows. Your Textual apps receive keyboard and mouse events and text.

They claim it should be “essentially free” for hobby use.

The text stream between your apps and their servers will eventually be (or are) encrypted.

“What hump?”

Thanks for the replies. So I guess USENET had/has an advantage here, as all USENET servers replicate “all” newsgroups automatically. To the extent that one server exists, the newsgroup lives on regardless of its origination point. In that sense, the collective work of all contributors is not lost until the retention date passes.

The ActivityPub proposal mentioned by @chris seems to be a good enough equivalent, at least for communities that are shared.