Skip to content
This repository has been archived by the owner on Jun 24, 2022. It is now read-only.

Do our Android recommendations have to be in the official F-Droid repository? #1201

Closed
Mikaela opened this issue Aug 22, 2019 · 3 comments
Closed

Comments

@Mikaela
Copy link
Contributor

Mikaela commented Aug 22, 2019

This concern was rised in #1132 where I commented:

I can understand the desire of having app in the official F-Droid repository as it helps with discoverability and is a confirmation that the app fulfils their recommendations, but I think decentralization is also worth thinking about and that it's not desirable for everything to be centralized only on the official F-Droid repo.

This issue also affects #1187 (& #1200) which aren't in the official F-Droid repository, but has its own repository. I think we also list Bitwarden that is in the same situation.

See also: #338.

@blacklight447
Copy link
Collaborator

First of all, we would need to decide whether this only cover the official f-droid repo, or being installable from any fdroid all repo.

In any case though, while I would see being on fdroid is a big bonus, I would not make it a requirement, as it would have the potentional to exclude some really good apps just for not being on fdroid.

@Mikaela
Copy link
Contributor Author

Mikaela commented Nov 24, 2019

Judging by the three 👍 to the previous comment, I guess our policy which just needs committing, is:

The app doesn't need to be in the official f-droid repo, but it's a plus.

@privacytoolsIO/editorial further thoughts?

@Mikaela Mikaela self-assigned this Nov 24, 2019
@Mikaela Mikaela added approved approved, waiting for a PR todo labels Nov 24, 2019
@dngray
Copy link
Collaborator

dngray commented Dec 2, 2019

F-Droid is a distribution mechanism.

thinking about and that it's not desirable for everything to be centralized only on the official F-Droid repo.

Technically it isn't centralized. There are f-droid mirrors.

The advantage of being in the official F-droid repository is that it must be open source and able to be built from that source. In addition to that there is some tracking on anti-features, which may not be the case in a third party repository.

Then there is the reproducible builds initiative. It is more desirable for the software to be in F-Droid and reproducible than in a third party repository and not be reproducible. You can see the recent builds from their wiki.

Also note that with Google Play, Google can push updates to you, whenever they want. Could select targets get a certain update that nobody else gets? Sure, you've got a set of login credentials attached to that software distribution center.

Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Projects
None yet
Development

No branches or pull requests

4 participants