If you don’t use snap you can delete them all.
You can use my script to remove all traces of snap completely from your system (or reinstall it if you regret it)
I removed all snap because it is securitywise the most vulnerable packagesystem for supplychain attacks.
- The snap-store is proprietary so you risk vendor lock-in
- there is only one snap-store, a single point of failure and therefore an attractive target.
- Anyone can upload without oversight and because the snap-store is proprietary, only a few people can vet the software in the store, no “many eyeballs” from the community (supplychain attack danger)
- it already has a history of peddeling malware(Issue 03 · Security Crisis) victims were made, in one case over $400,000.- lost in crypto.
- Ubuntu has a history of reacting very slow to snap security issues
Here is a quote from the forementioned link:
- Alan Pope, a former Canonical employee and Snap Store maintainer, publicly stated that malware reports could go unresolved for days — and that the cycle had repeated itself more than once across different fake wallet apps.
- Domain takeover hijacking was also used — attackers registered typosquat domains that intercepted update checks from installed fake wallets, allowing the malicious payload to persist and evolve even after initial detection.
- ~50 Snap packages were estimated by insiders to have malware reports outstanding at any given time — with removal delays spanning multiple days after initial reports, according to publicly available community threads.
- Canonical’s response speed was not proportionate to a company generating $292M in annual revenue, 83% gross margins, and growing its headcount year over year. The security team’s reaction time suggested understaffing relative to the store’s scale.
Technically, a sandbox around an application should increase security so the idea of snap is sound. It’s the snap-store implementation that sucks.