• ale@lemmy.world
      link
      fedilink
      English
      arrow-up
      8
      ·
      1 year ago

      That’s valid. In theory, because you’re downloading open source on there, you could audit the apps you download, but don’t know anyone who does that unless it’s their job.

      • SlikPikker@lemmy.ca
        link
        fedilink
        English
        arrow-up
        6
        arrow-down
        3
        ·
        1 year ago

        My main issue is everything signed with the same key, and the way updates can go through without review.

        Obviously Play store isn’t safe or wonderful, but it does have better review policies.

          • SlikPikker@lemmy.ca
            link
            fedilink
            English
            arrow-up
            4
            arrow-down
            1
            ·
            1 year ago

            That actually looks useful, particularly since github has a clearer security policy than f-droid.