Hello TUXEDO Fans and Open-Source Enthusiasts!
The recent events surrounding the Arch User Repository (AUR) serve as yet another reminder that while trust is an essential part of open source, verification remains indispensable. Over the past few days, attackers attempted to distribute malware to unsuspecting users through manipulated package recipes. The target was not Arch Linux itself, but rather the community-maintained AUR, whose package recipes are generally not subject to review.
The incident highlights the challenges that free software projects face today. The AUR now contains well over 100.000 packages and relies heavily on community contributions. This open model is one of its greatest strengths. At the same time, however, such structures are increasingly coming under pressure. Automated tools and AI systems enable attackers to overwhelm established review processes with a sheer volume of submissions and changes. The open-source community will need to find new ways to balance openness with security.
On a more positive note, our App of the Week introduces KeepSecret, a modern password manager that integrates seamlessly with existing Secret Service-compatible credential stores such as KeePassXC, KWallet, and GNOME Keyring. We also take a look at a handy KWin extension in this week’s TUXEDO OS Tips & Tricks, showing how to eliminate the annoying „dead zones“ between monitors of different sizes and make multi-monitor setups much more comfortable to use.
Enjoy reading,The TUXEDO OS Team
Note: We would like to keep you updated on the latest developments in TUXEDO OS with the TWIX series and introduce you to exciting applications as well as practical tips related to the KDE desktop and TUXEDO OS. However, this section should not be a one-way street: your feedback, ideas, and suggestions for improvement are very welcome! For this purpose, we have created a thread on Reddit, where you can reach us directly.
Updates at TUXEDO
FAI 6.0.5–2.5.0
Ubuntu 26.04 LTS „Resolute Raccoon“ has been added to WebFAI. Further details can be found in our news .
Ubuntu 24.04 with GNOME has been moved to Legacy Installation & Recovery .
The entries Kubuntu 24.04 , Ubuntu MATE 24.04 , and Xubuntu 24.04 have been removed.
Ubuntu 22.04 now displays a notice that it should not be installed on devices from mid-2024 onwards.The missing Windows option in the Debian GRUB menu has been fixed.
On Ubuntu 26.04, Snap packages are now installed toward the end of the installation via Calamares. A corresponding note informs users during setup about this process.
Known issues
On Ubuntu 26.04 with GNOME, the Calamares installer may sometimes not be visible. On some systems, this is mitigated by temporarily setting the GRUB parameter nomodeset . The configuration is automatically removed after installation completes.
This issue currently affects all distributions using GNOME as a desktop environment. A permanent fix is in progress.
Updates in TUXEDO OS
Current TUXEDO OS ISO
Issue fixed: GRUB theme was not installed during encrypted installation
Software base updated to the latest state
NVIDIA driver updated to version 580
Firefox updated to version 152.0
Package base updated to Ubuntu state as of 15 June 2026
Firefox 152.0
Thunderbird 140.12.0esr
Chromium 149.0.7827.114
KDE App of the Week: Securely Storing Secrets with KeepSecret
Password security is more important than ever, and the question of safe storage has accompanied the IT world since the early days of the internet. With KeepSecret , KDE offers a modern answer to this topic that integrates seamlessly into the KDE desktop ecosystem.
What is KeepSecret?
KeepSecret is a graphical password manager frontend and acts as a client for SecretService -compatible providers. Secret Service is intended, among other things, to eventually replace KWallet , which is considered problematic in some areas. Background information on terms such as KeepSecret , Secret Service , and oo7 is explained in detail by KDE developer Marco Martin in his blog.
KeepSecret works not only with KWallet but also with other systems such as oo7, GNOME Keyring, or KeePassXC. As soon as the respective service is running or provided via D-Bus, the application automatically detects it and clearly displays all available collections along with their stored secrets.
KeepSecret offers a universal, clear interface for managing passwords, keys, and other secrets from various Secret Service-compatible backends in the KDE and Plasma ecosystem.
Current status
Version 1.1, released in early May 2026, focuses primarily on smaller usability improvements and clearer user feedback. With this version, KeepSecret is also available on Flathub for the first time, making installation on TUXEDO OS particularly easy via the Discover software store.
Conceptual background
KWallet and GNOME Keyring were incompatible for a long time due to the lack of a common standard. The Secret Service specification introduced a unified D-Bus interface that is now supported equally by KWallet, GNOME Keyring, and KeePassXC. KeepSecret leverages this approach and, under the GPL-2.0-or-later license, provides a universal interface for both the Plasma Desktop and Plasma Mobile.
Info: Are you interested in Plasma development and want to know what new features are planned and which programs have been recently updated? You can find a detailed overview in the weekly column This week in Plasma by KDE developer Nate Graham.
TUXEDO OS Tips & Tricks: Easier Cursor Movement Between Monitors of Different Sizes
Working with multiple monitors has become part of everyday life for many Linux users. Whether you use a notebook with an external display or a full desktop workstation, additional screens significantly increase the available workspace. Linux usually detects new monitors automatically and makes setup quick and straightforward.
However, problems can arise when the connected displays use different resolutions, sizes, or scaling factors. In such cases, so-called dead zones can appear along the shared screen edges. When you try to move the mouse cursor from one monitor to another, it may seem to get stuck on an invisible barrier.
The KWin plugin kwin-ease-cursor-crossing solves this annoyance. The extension automatically detects these dead zones and smoothly guides the cursor to the adjacent display. This results in a much more fluid and comfortable experience, especially when using a notebook together with an external monitor.
Monitors with different sizes, resolutions, or scaling factors can create dead zones along shared screen edges, causing the mouse cursor to appear stuck on an invisible barrier.
Installation on TUXEDO OS
At the moment, kwin-ease-cursor-crossing cannot yet be installed directly from the KDE Store. Instead, the extension must be built and installed manually from source. The developer provides instructions for several distributions. The Debian, Ubuntu, and KDE Neon instructions on GitHub also work on TUXEDO OS.
First, install Git and then download the extension’s source code. Open a terminal and run the following commands:
sudo apt install git
git clone https://github.com/jannikac/kwin-ease-cursor-crossing.git
cd kwin-ease-cursor-crossing
Next, follow the remaining steps in the project’s installation guide. Once the installation is complete, log out of your KDE session and log back in. The cursor will then automatically cross dead zones. You can find the extension’s settings under Display & Monitor » Ease Cursor Crossing in the System Settings.
After installing the extension, you can arrange your monitors in the KDE System Settings as usual. The additional functionality then works automatically in the background.
In the Display & Monitor » Ease Cursor Crossing section, you can configure the extension’s behavior and enable additional options for moving the cursor between displays.
Ubuntu Security Updates
USN-8454–1: libheif vulnerabilities
USN-8453–1: Net::CIDR::Lite vulnerabilities
USN-8452–1: pbkdf2 vulnerability
USN-8451–1: Vim vulnerabilities
USN-8449–1: ldns vulnerability
USN-8442–1: kitty vulnerabilities
USN-8438–1: OpenImageIO vulnerabilities
USN-8437–1: rabbitmq-c vulnerabilities
USN-8433–1: OpenStack Keystone vulnerabilities
USN-8432–1: FreeRDP vulnerabilities
USN-8430–1: ADSys vulnerabilities
USN-8398–3: nginx vulnerability
USN-8405–2: CUPS regression
USN-8427–1: Mesa vulnerability
Current BIOS/EC Versions
An EC/BIOS update affects key system components. Please ensure that you follow the instructions carefully and take your time. The process is usually completed quickly. If you have any doubts, our support team is happy to assist you. The following devices have BIOS/EC updates available:
Model
CPU
GPU
BIOS
EC
InfinityBook Pro 14 Gen9
Intel
Intel
N.1.15A24
1.18.00
InfinityBook Pro 15 Gen9
Intel
Intel
N.1.15A24
1.18.00
