The #FDroid website has a new banner on top to remind visitors that #Google did not change course and #Android will be locked-down in under 200 days.

@fdroidorg
Have you addressed the points made by the creator of #Wireguard regarding the security of your build infra?

wireguard inclusion policy violation (auto-updates w/o explicit user consent) (#3110) · Issues · F-Droid / Data · GitLab

Per https://f-droid.org/en/docs/Inclusion_Policy/ The software must not download additional executable binary files (e.g. addons, auto-updates, etc.) without explicit user consent....

GitLab (gitlab.com)

Supply chain security is super-duper underrated. Thanks for the spotlight, Jia Tan!

@fdroidorg
Did you secure your build environment yet? Why must you re-sign everything instead of using signed artifacts from developers?

Until then, #Obtainium.

@marcprux