Unfortunately I think this is going to be an inevitable problem with any software repository. F-Droid just expects users to go to the repository and inspect the code if they have concerns, or to trust the developer. Google can verify their own code isn’t malicious. They can’t verify the code of potentially millions of apps submitted to the Play Store that will inevitably ask for access to your entire filesystem, if given the option. Because let’s face it, the majority of mobile apps these days are just spyware whose primary purpose is hoovering up as much data as humanly possible to sell to data brokers.
I think that’s the cause and solution rolled into one sentence right there. Use F-droid instead of Play Store.
Unfortunately I think this is going to be an inevitable problem with any software repository. F-Droid just expects users to go to the repository and inspect the code if they have concerns, or to trust the developer. Google can verify their own code isn’t malicious. They can’t verify the code of potentially millions of apps submitted to the Play Store that will inevitably ask for access to your entire filesystem, if given the option. Because let’s face it, the majority of mobile apps these days are just spyware whose primary purpose is hoovering up as much data as humanly possible to sell to data brokers.
Nextcloud is in the main repo
Huh?
What’s confusing?
Nextcloud is in the F-droid main repo
Its confusing that you didn’t say F-droid
I’m confused because I don’t understand why you’re telling me this.