• Chris Ely@fosstodon.org
      link
      fedilink
      arrow-up
      1
      arrow-down
      1
      ·
      1 year ago

      There is zero chance I will install SongTube right now.

      I only give permission to install apps to app stores and app managers. The author should put in the work to have the app included in the main F-Droid repository before I could even consider recommending the app.

      Practically, no apps should be downloading updates to themselves.

      https://apt.izzysoft.de/fdroid/index/apk/com.artxdev.songtube

      @visnudeva
      @Harry_h0udini

      • visnudeva@lemmy.ml
        link
        fedilink
        English
        arrow-up
        2
        ·
        edit-2
        1 year ago

        Izzyondroid repo is maintained by an active and trusted F-Droid core contributor, don’t you use it and why not ? If it is really bad I could change for libretube which is second in my list but not as beautiful.

        • Chris Ely@fosstodon.org
          link
          fedilink
          arrow-up
          0
          ·
          1 year ago

          I’m familiar with Izzy. The main objection I have is that apps in that repository aren’t built from source independently. I think it’s a terrible trend to throw away the checks and benefits of using an app store, by telling people to turn off safety features and install from untrusted sources. TOFU is not a replacement for reproducible builds and binary white-listing.

          This app in particular is trying to update itself, which I find unacceptable.

          @visnudeva