You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
need reproducible rebuild. A password manager is a security critical app therefore the highest priority of apps to verify reproducable and garuntee veritable to the purported source. In the same way F-Droid claims "It is built and signed by F-Droid, and guaranteed to correspond to this source tarball." you may do the same. Nobody should be using a password manager which they cannot trust.
F-Droid used to be this way where the app devs would sign their own code or apk, however that key system worked.
Expect a checksum similar to what can be seen on verification.f-droid.org
need reproducible rebuild. A password manager is a security critical app therefore the highest priority of apps to verify reproducable and garuntee veritable to the purported source. In the same way F-Droid claims "It is built and signed by F-Droid, and guaranteed to correspond to this source tarball." you may do the same. Nobody should be using a password manager which they cannot trust.
F-Droid used to be this way where the app devs would sign their own code or apk, however that key system worked.
Expect a checksum similar to what can be seen on verification.f-droid.org
Wheeler's DDC methodology may be used to verify the app is guarunteed to correspond to the sourcecode given. I have a repo to colab on DDC https://github.com/freedom-foundation/Countering_Trusting_Trust_through_Diverse_Double-Compiling
The text was updated successfully, but these errors were encountered: