Yeah they are, this problem is super overblown. Weirdly I've seen articles about this coming up for other apps too, like the ChatGPT app for MacOS storing conversation history in plain text on the device. Weird that this is suddenly a problem.

If someone wants better security, the can use full disk encryption and encrypt their home directory and unlock it on login.

That's just not true though

I agree, I wish fonts just defaulted to distinguishing between them

Again, the binaries aren't from questionable sources. From what I can tell they all come from the official source. The problem is them being unsigned, which is a simple oversight that can be made when something is being written by someone who is not security minded. It is alpha software and this is already actively being discussed.

Fair, they're pretty common but most fonts support OpenType variations which let you change parts of the fonts to other variants. Having a variant with distinct l's and I's is pretty common and Inter supports this.

It should just work, distrobox supports graphical apps.

Like most modern fonts, it supports a lot of OpenType features, so this can be changed dynamically. Changing some settings by default has already been mentioned in the discussion around the change.

Because people can make make mistakes...

Loads of important projects have had vulnerabilities that showed up through minor mistakes and oversights. I agree that this shouldn't happen, but it did. I'd still prefer this project to a closed source editor/IDE and even VSCodes method of having a store full of plugins, many of which are closed source and unverified. The project is in alpha, mistakes and problems are expected. This was obviously an oversight, and after being pointed out, it is being addressed.

Can you elaborate on questionable sources? All the sources I saw were the official sources of the binaries they wanted to download.

Better/simpler experience out of the box. With Helix you install the LSPs for languages you use and you're set with a fully featured editor. Manual configuration is only needed for setting themes, keybinds, and small setting changes. It also feels much faster than a fully configured vim/neovim. Lastly its keybinds are inspired by Vim/Kakoune, but different from both.

It supports LSPs, and has treesitter syntax highlighting and git integration which honestly makes it 90% of the way there already

They are addressing this here: https://github.com/zed-industries/zed/pull/14034

yeah the editor is being updated way too fast for nix to keep up. I'm sure it'll be easier once it has its stable release. I see the have a nix flake in the repo, it would be great if they added a package to the outputs instead of just a devshell, nix users could easily build it from master or whichever tag they want.

There are solutions in this issue to the LSP issue. The editor would need to be built in an fhs-env, or they will need to find a way to make it uses binaries installed with nix instead of the ones it downloads itself. VSCode had a similar issue, so there is a version of the package that let's you install extensions through nix, and another that uses an fhs-env that allows extensions to work out of the box.