Flathub's Unintended Rankings: How Shady Developers Exploit Open Source Reputation

Imagine a highly reputable open-source software website appearing in top search results for terms like "pornhub downloader." This is precisely what's happening with Flathub, the official web-based app store for Flatpak packages.

My discovery came while using Ahrefs, an SEO tool for monitoring web rankings. It was then that I noticed Flathub ranking for keywords it should clearly not be associated with. Flathub is unexpectedly ranking for undesirable keywords.

Alarmingly, at least two of Flathub's top ten ranked pages are NSFW tag pages. These top-ranking pages are far from what Flathub would want to showcase.

Exploiting Flathub's Reputation

While this might seem like an innovative way to introduce more people to open-source software, the applications at the root of this problem are not open source at all. There are three such apps, all created by the same developer, known as Warlord Software. I will deliberately avoid linking to their website. Similar applications, all from the same developer, are misusing tags.

When visiting the Flathub pages for these applications, they appear as typical downloader apps for Linux users, seemingly innocuous. Initially, it seems like a regular downloader app... until you look closer.

However, the core of the problem lies within the tag section. All three apps are deliberately employing NSFW tags. This is a calculated act of exploiting Flathub's strong reputation to drive downloads, ultimately guiding users towards their paid versions. Indeed, all three applications come with premium licenses.

Before dismissing this as a minor issue or arguing that there's nothing wrong with offering an app to download videos from adult websites, it's crucial to note that no such tags or explicit words are mentioned anywhere on the developer's own website, where these apps are also offered. The developer's official website remains clean of any NSFW mentions.

Understanding the Strategy

It's notoriously difficult for a new website or application to rank for popular yet highly competitive keywords like "xyz downloader." The internet is already saturated with numerous tools that facilitate downloading online videos from various sources.

This developer's shrewd strategy was to create a few generic downloader apps, provide Flatpak versions for Linux users on Flathub, and then tag them with high-volume NSFW keywords. With Flathub's trusted platform and verified tag system, these apps gain an appearance of legitimacy, making them more tempting to download. Flathub, being a highly reputable domain, easily ranks high for these competitive terms.

Through this tactic, a developer who might otherwise struggle to achieve even 100 downloads has garnered over 250,000 downloads. While many legitimate downloader applications exist for Linux that could use similar keywords, this specific misuse is exclusively tied to apps from one particular developer, indicating a clear exploitation of the Flathub ecosystem.

Flathub's Role and Responsibility

It's not entirely Flathub's fault that someone leveraged NSFW tags to promote and sell shady proprietary apps. However, they undoubtedly need to be more proactive and careful in preventing such clear exploitation of their web reputation.

I first noticed this issue several months ago and considered writing about it, but ultimately decided to ignore what I deemed a "non-issue." However, months later, with Flathub still ranking for all kinds of "this-hub, that-tube, xyz-hamster" downloaders, I could no longer tolerate it.

To the dedicated team at Flathub, please take note. My concerns are now formally raised.