The idea with snaps is that you shouldn’t trust them as much as you trust the software coming from the ubuntu and debian archives. They are confined by default, and you are always in control of the permissions that you give them. The permissions are fine grained, so you no longer have to give them full root access.
However, I have learned that the only way to trust a project is to get to know the people behind. There will always be mistakes and bugs, even on the most secure project, so what I look for (in addition to the obvious technical capabilities) is to be confident that the people I decide to depend on will own those mistakes and make their best to patch them and prevent them in the future.
One of the things I love the most about free software is that if I choose to do so, I can get very close to the developers of the projects. I can ask them questions, and I can help them. I can see how things evolve, and I get an open window to how the project reacts to good and bad times. And this forum is great for that. We are building every piece of the operating system together, we leave here a trace of every thing that happened, and you will get to see who did what, why, and you can decide if you want to trust those people connecting an interface on your machine.
For exampe, take a look at @evan’s post when he was starting to test heroku before transferring it upstream. Or you can search for gimp and see @daniel’s journey.
But, just seeing how people interact is also not enough to give you the confidence to connect some delicate interfaces. Us, the paranoids, will first take a peak at the source code:
We might even want to deconstruct and rebuild the project ourselves, to learn what it does and how.
And of course, there will be many things that are not easy to understand in a few hours. So we can go back to people we trust and ask them. If something is not clear for you, please leave your question here in the forum. There are many great developers here, and our amazing security team is also present.
Snaps, the store, and these forum are big game changers. It’s a work in progress, and we still need to get better on traceability and transparency, but what’s great about not having everything already solved is that you can join us.