The signature and the random updates issues can be solved (partially) by using the izzyondroid repo. A lot of the applications on fdroid are on it.
It compiles from sources, doesn’t change signatures, and fetch updates on a daily basis.
I noticed that in their info text shown to their users, they don’t mention F-Droid. I wonder if google doesn’t allow them to mention other stores as part of their “security” policies.
Thankfully the full feature will still work if you get the app from F-Droid
Hopefully this will motivate more people use F-Droid
I agree with the sentiment, but wouldn’t necessarily recommend F-Droid, see https://privsec.dev/posts/android/f-droid-security-issues/
“Oh no, an issue that will only affect an extremely narrow spread of people who aren’t already aware of it is present, therefore F-Droid bad”
If you’re that concerned about being surveilled, you already have bigger issues.
The signature and the random updates issues can be solved (partially) by using the izzyondroid repo. A lot of the applications on fdroid are on it. It compiles from sources, doesn’t change signatures, and fetch updates on a daily basis.
It doesn’t solve all the issues, but it can help
I noticed that in their info text shown to their users, they don’t mention F-Droid. I wonder if google doesn’t allow them to mention other stores as part of their “security” policies.
deleted by creator
Interesting, Yes I think users should be made aware that if they get the app from F-Droid it will work as intended.