Say I have Google Camera installed with network permissions revoked. Say I also install Play Services which does have network access. Would Google Camera be able to share data about my pictures to Play Services which would then phone home to Google?
Say I have Google Camera installed with network permissions revoked. Say I also install Play Services which does have network access. Would Google Camera be able to share data about my pictures to Play Services which would then phone home to Google?
Here is one brief video explaining some of F Droids security issues: https://youtu.be/lAbgeJau3eE&t=305 piped link: https://piped.video/watch?v=lAbgeJau3eE&t=314
That is old(ish) news. And f-droid have since then implemented allowing reproducible builds
which allows for developer signed keys to be used for the APK
This is the best of both worlds. You verify the source code is actually what the developer says it is. And you verify the binary you’re running was built by the developer.
Now if we only could get the F-droid project to be controlled by a board and not a single person.
https://f-droid.org/2023/03/20/f-droid-board.html
Recent drama aside they are trying to do exactly that
https://gitlab.com/fdroid/admin/-/tree/master/board/meeting_minutes
If you read the recent meeting minutes, it’s just growing pains, they’re doing the right things
If you really want to get into the recent drama, you can read the issues. But they are being open and transparent about everything. Which is exactly what you want in public governance.
https://gitlab.com/fdroid/admin/-/issues/448
Nice. Great discussion all. Thanks.
Keep in mind that the security issues were addressed a while back. It was in a blog post.
Thank you for providing some info for discussion MagneticFusion.
Here is an alternative Piped link(s):
https://piped.video/lAbgeJau3eE&t=305
Piped is a privacy-respecting open-source alternative frontend to YouTube.
I’m open-source; check me out at GitHub.