It isn't a secure operating system. It is a toolkit for pen testing and red team hackers. Definitely not a daily driver kind of OS.
Neptr
Basically, its a customization of Fedora Workstation with Steam, Proton GE, and some system tweaks for better gaming support.
I wouldn't stress much. It would take a targeted attack to have actually compromised your phone. It is alright.
Your god damn right.
I am kidding obviously, I stress about people looking at me.
I am
Idk, but I just enable intelligent autohide.
For nvidia hardware, use nvidia images of Aurora/Bluefin (or Bazzite if you want gaming out of the box). All the OSes I mentioned are based on Fedora Atomic and offer image options for nvidia proprietary drivers. They even signing the kernel drivers, so you can use Secure Boot.
-> UEFI IRC client written in Rust
Docker is good when combined with gVisor runtime for better isolation.
What is gVisor?
gVisor is an application kernel, written in memory safe Golang, that emulates most system calls and massively reduces the attack surface of the kernel. This is important since the host and guest share the same kernel, and Docker runs rootful. Root inside a Docker container is the same as root on the host, as long as a sandbox escape is used. This could arise if a container image requires unsafe permissions like Docker socket access. gVisor protects against privilege escalation by only using root at the start and never handing root over to the guest.
Sydbox OCI runtime is also cool and faster than gVisor (both are quick)
You mention "sane defaults". That might mislead someone because it is ambiguous. The terminal ~~defaults~~ used to default to a root prompt, exemplifying that it isn't a distro focused on sane defaults for a desktop distro.
Kali is a tool for a specific job. Its meant mostly for hacking or troubleshooting/analysis, being an OS for executing a collection CLI/TUI and GUI utils.
-Edited everything to make myself more intelligible.