Would fdroid be safe from this kind of practice? Of course there’s no web domains involved but the exploit there is potentially the same
Would fdroid be safe from this kind of practice? Of course there’s no web domains involved but the exploit there is potentially the same
ammonium@lemmy.world 5 months ago
Yes, Android apps are signed and Android refuses updates with a different signature.
trolololol@lemmy.world 5 months ago
What I mean is fake apps with slightly different names, does fdroid have the potential to approve them? Even if it’s open source, if someone intentionally adds malicious code it can take a couple months to spot, while the scan is going on.