Hello everyone, I know that on the website it is recommended to use the APK files provided by the developer on github over f-droid due to security reasons but I talked to someone about this topic and they said that it is better to download apps from f-droid because on github the dev can just put anything not on the source code to the APK file on releases while f-droid builds straight from the source code. I’m quite confused on whether I should get apps from f-droid or use something like obtainium. What do you guys say?
Here you go:
1 Like
Thank you but what about the possibility of the developer putting something unrelated to the releases apk? Is it still better then f-droid in that case?
1 Like
And that’s why its recommended to only use the apps and from devs you trust or care about. Not install anything willy nilly.
3 Likes
I see thanks. Well I don’t have any apps from untrusted devs but I think there is still chance they could get hacked or something like that, or is that overthinking it?
If you use select apps and are intentional about what you install on your device and know what you’re doing, then you’re fine. Just continue being mindful is all.
1 Like
This is the main reason why I use F-Droid.
F-Droid ensures that the .apk 100% corresponds to the source code and that this can be verified.
How do you decide which devs you trust?
For most people this would mean just what their stomach tells them