Fractal executes `xdg-open` on downloaded files when you click on pictures.
Fractal executes xdg-open
on downloaded files when you click on pictures.
I see this behavior as extremely non-secure because users can have all kind of xdg-open actions on different files. Up to executing exe files in wine even.
I would expect at least a confirmation before doing anything with a file, if not an even stronger restriction.