Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Detect F-Droid APK signature #13

Open
franzaps opened this issue May 11, 2024 · 5 comments
Open

Detect F-Droid APK signature #13

franzaps opened this issue May 11, 2024 · 5 comments
Milestone
0.2 Buenos Aires

Comments

@franzaps
Copy link
Contributor

We should be avoiding F-Droid signed packages as much as possible (unless it's the only APK the dev puts outside of big tech)
@franzaps franzaps mentioned this issue May 11, 2024
Closed
@franzaps
Copy link
Contributor Author

Also reject debug certs

@franzaps
Copy link
Contributor Author

Google Play cert SHA-256: 3257d599a49d2c961a471ca9843f59d341a405884583fc087df4237b733bbd6d

@franzaps
Copy link
Contributor Author

Check https://floss.social/@IzzyOnDroid/110856024209846632

@franzaps
Copy link
Contributor Author

franzaps commented Jul 4, 2024

Only applies to APKs we process. Developers can sign whatever they like

@franzaps
Copy link
Contributor Author

F-Droid certificate hash: 3705f184cb67d683e76ecc203cc9cc357e6448c50e59002419085b4c286df0e8

@franzaps franzaps transferred this issue from another repository Aug 31, 2024
@franzaps franzaps added this to the 0.2 Buenos Aires milestone Aug 31, 2024
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
0.2 Buenos Aires
Development

No branches or pull requests
1 participant
@franzaps