• Forbo@lemmy.ml
    link
    fedilink
    arrow-up
    3
    ·
    edit-2
    1 year ago

    Is there some signing in place to ensure it’s not a malicious repo? I don’t really trust unofficial F-Droid repos.

    • Oddbin@lemmy.world
      link
      fedilink
      arrow-up
      2
      ·
      1 year ago

      Unfortunately not. I’m trusting others who know better but if you want trusted as best as it can be you’re stuck with the play store sadly.

      • Forbo@lemmy.ml
        link
        fedilink
        arrow-up
        2
        ·
        1 year ago

        If I remember correctly F-Droid supports reproducible builds, but it’s a matter of the app developer supporting them. So there is light at the end of the tunnel, we’re just not there yet.