• Chris Ely@fosstodon.org
    link
    fedilink
    arrow-up
    1
    arrow-down
    1
    ·
    1 year ago

    There is zero chance I will install SongTube right now.

    I only give permission to install apps to app stores and app managers. The author should put in the work to have the app included in the main F-Droid repository before I could even consider recommending the app.

    Practically, no apps should be downloading updates to themselves.

    https://apt.izzysoft.de/fdroid/index/apk/com.artxdev.songtube

    @visnudeva
    @Harry_h0udini

    • visnudeva@lemmy.ml
      link
      fedilink
      English
      arrow-up
      2
      ·
      edit-2
      1 year ago

      Izzyondroid repo is maintained by an active and trusted F-Droid core contributor, don’t you use it and why not ? If it is really bad I could change for libretube which is second in my list but not as beautiful.

      • Chris Ely@fosstodon.org
        link
        fedilink
        arrow-up
        0
        ·
        1 year ago

        I’m familiar with Izzy. The main objection I have is that apps in that repository aren’t built from source independently. I think it’s a terrible trend to throw away the checks and benefits of using an app store, by telling people to turn off safety features and install from untrusted sources. TOFU is not a replacement for reproducible builds and binary white-listing.

        This app in particular is trying to update itself, which I find unacceptable.

        @visnudeva