this post was submitted on 01 Oct 2024
88 points (96.8% liked)

Open Source

31679 readers
605 users here now

All about open source! Feel free to ask questions, and share news, and interesting stuff!

Useful Links

Rules

Related Communities

Community icon from opensource.org, but we are not affiliated with them.

founded 5 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[โ€“] [email protected] 19 points 2 months ago* (last edited 2 months ago) (1 children)

It would be a single point of failure for many apps in case the curators of F-Droid were dishonest or hacked. They could insert bad things into lots of packages without having to change the public source code. But it also becomes the only point where malware or backdoors could be inserted that way, instead of having to trust every single developer to build honestly off the source code, which we'd have to do if they just stuck prebuilt binaries up there. I don't know how rational I'm being, but it makes me trust F-Droid apps more that they build each one themselves.

[โ€“] [email protected] 5 points 2 months ago

also worth pointing out that fdroid supports reproducible builds, which helps quite a bit with being trustable.