Thankfully things are getting better in F-Droid land.

I can’t get behind this reasoning.

Which store is best depends on each user’s threat model. If the threat is that an app developer could insert a backdoor in their own app, F-Droid is better. If the threat is that the F-Droid team could insert a backdoor in an app, or that an app could contain a vulnerability that may be exploited if the app is not updated for one week, Accrescent is better.

“Protection against malicious devs isn’t necessary because it’s not in our ‘threat model’” is seriously a way some people think…?!

Reproducible builds solve that.

So now we no longer have to face the choice between trusting one app (the app store itself) with thousands of eyes on it vs cumulatively trusting dozens and dozens of individual app devs including some weird niche apps that only you need, any of which could’ve included malware. We can know that the APK the dev built and the APK the app store built and the APK any security-conscious third party can build are all exactly the same and built from the same source dist.