Show more
Hans-Christoph Steiner boosted
Torsten Grote  

If the app is available from more than one repository, the box in the app details screen becomes a drop-down where the user can see all repos and choose which one should be used for installation, updates and app information.

Show thread
1+
Hans-Christoph Steiner boosted
Torsten Grote  

When tapping an app, the user sees the app details screen as usual. There, a new box at the top shows the repository the app comes from.

All information on that page including the versions provided for installation are provided by that repo.

Show thread
1
Hans-Christoph Steiner boosted
Torsten Grote  

Version 1.20 of @fdroidorg brings some pretty big changes of how repositories are handled:

• official repo is always preferred
• the repo an app comes from is prominently shown
• if an app is available from more than one repo, they can choose where to get it from
• power users can change global repo priorities

1+
Hans-Christoph Steiner boosted
Torsten Grote  

If you did not yet opt-in to beta versions of F-Droid, please manually install 1.20 and help testing before we make it available for everyone.

Show thread
1
Hans-Christoph Steiner boosted
Sonny  

Are you experienced with GTK and Rust ? :gnome: ❤️ :rust:

We are looking to contract someone to work on the new GNOME Password Manager 🔑

We want it to become a core/default app and help secure millions of users.

You'll be working with the GNOME Foundation, a non-profit dedicated to building emancipatory technologies for everyone.

Please send resume / portfolio to stf@gnome.org

Boosts welcome :boost_love:

#GTK #Rust #rustlang #GNOME #Linux #Ubuntu #Linux #Fedora #OpenSUSE #Debian

1+
Hans-Christoph Steiner boosted
Bjoern Michaelsen  

Its also kinda enlightening on how distros react to the #xz backdoor:
* #arch "lets rerelease the version from the untrusted party, we run autogen.sh ourselves now"
* #debian "lets roll back to the last version not having any changes by the untrusted party and rebuild our infra from scratch"

I know which of these I trust more as an upstream ...

0
Hans-Christoph Steiner boosted
F-Droid  

@selectallfromdual Latest F-Droid Client 1.20 alpha (expand Versions to install) redesigned the repo section. Feedback is welcome.

1+
Hans-Christoph Steiner boosted
AndresFreundTec  

I accidentally found a security issue while benchmarking postgres changes.

If you run debian testing, unstable or some other more "bleeding edge" distribution, I strongly recommend upgrading ASAP.

openwall.com/lists/oss-securit

1+
Hans-Christoph Steiner  

Three years ago, had a similar kind of attempt as the . A new contributor submitted a merge request to improve the search, which was oft requested but the maintainers hadn't found time to work on. There was also pressure from other random accounts to merge it. In the end, it became clear that it added a . In this case, we managed to catch it before it was merged. Since similar tactics were used, I think its relevant now

gitlab.com/fdroid/fdroidclient

1+
Hans-Christoph Steiner boosted
Jan Schaumann  

For anybody cynically going "haha, 'given enough eyeballs, all bugs are shallow" my ass", I'm willing to argue that the reverse engineering of the #xz #backdoor actually validates this claim.

We just didn't have enough eyeballs on this particular dependency, nor is it possible to have every commit in your dependency graph investigated. But once the issue was found, the community's focus moved like the 👁️ of Sauron; few teams could have done that work (as quickly, thoroughly, or at all).

0
Hans-Christoph Steiner boosted
Glyph  

@eb I really hope that this causes an industry-wide reckoning with the common practice of letting your entire goddamn product rest on the shoulders of one overworked person having a slow mental health crisis without financially or operationally supporting them whatsoever. I want everyone who has an open source dependency to read this message mail-archive.com/xz-devel@tuka

1+
Hans-Christoph Steiner boosted
European Commission  

Today, we've opened five non-compliance investigations under the Digital Markets Act.

It concerns:
🔹Alphabet’s rules on steering in Google Play
🔹Alphabet’s self-preferencing in Google Search
🔹Apple’s rules on steering in the App Store
🔹Apple's choice screen for Safari
🔹Meta’s ‘pay or consent model’

More info europa.eu/!4NF6bV

1+
Hans-Christoph Steiner  

Feels a little funny to be sympathic to 's point of view in the compliance workshop when some of the advertising industry lobbyists ask questions. From what I've seen, Google is less crappy than the average ad tech company when it comes to privacy, so I really hope the DMA does not open us up to more crappy ad tech companies.

0
Hans-Christoph Steiner boosted
Lucas Lasota  

In collaboration with @fdroidorg, the @fsfe prepared a study for the Japanese Competition Authority HDMC on how Apple's plans to comply with the #DMA represent a risk for #FreeSoftware and #DeviceNeutrality.

Key recommendations: 👇
- Full and unfettered side-loading
- No distribution via DRM encryption
- No residency or credit requirements for
3rd party app stores
- No interoperability request forms
- More competition on trustworthiness

download.fsfe.org/device-neutr

0
Hans-Christoph Steiner boosted
elementary  

#Sideloading apps and using alt stores like #Flathub is a major feature of elementary OS and a competitive edge over closed platforms that only let you install apps from a locked down store. In this release we’ve made several improvements to smooth out the experience of using alt stores based on your feedback and the latest #CrossPlatform standards.

Show thread
1
Hans-Christoph Steiner  

So maybe is a special case here, maybe not. But all of the apps that requires to be in the bundle do not require special privileges, so can easily be built into Android devices in a way where they are easily uninstallable, e.g. disabled and deleted. I'm thinking Maps, Gmail, etc.

Show thread
0
Hans-Christoph Steiner  

After 2018, stopped publishing data about malware coming via sideloading. Today in the workshop they made big claims that sideloading is much more likely to be malware. Since they are making claims based on that, they should again release that publicly.

transparencyreport.google.com/

0
Hans-Christoph Steiner  

@f15h ‭XIII.‬ ‭Art. 6(3)‬ ‭B.1‬ ‭23.‬‭ ...Google‬‭ Android‬‭ allows‬‭ users‬‭ to‬‭ uninstall‬‭ apps‬‭ by:‬ ‭(i)‬‭ fully‬‭ deleting‬‭ apps‬‭ that‬‭ are‬‭ downloaded‬‭ or‬‭ pre-installed‬‭ in‬‭ a‬‭ Google‬‭ Android‬‭ device's‬‭ user‬ ‭partition;‬‭ and‬‭ (ii)‬‭ disabling‬‭ apps ‬‭in ‬‭a ‬‭Google‬‭ Android‬‭ device's ‬‭system‬‭ partition‬‭ such‬‭ that‬‭ they‬ ‭are returned into an uninstalled state.‬‭

0
Hans-Christoph Steiner  

says is not part of the OS but then do not allow users to actually uninstall it. At the same time, they say that they won't let people download it and install it on other AOSP-based systems like Amazon Fire. We know this kind of thing works since people are downloading Play Services from places like APKMirror.

Show thread
1
Hans-Christoph Steiner boosted
Jan Penfrat  

If you needed any more proof that the so-called #AppAssociation #ACT is an #Apple front, their lobbyist just asked #Google whether it wasn't worried that 3rd party app stores are dangerous to users and would put a control process in place (like Apple does). 😠

Show thread
1
Show more

fdroid

71

debian

38

privacy

15

guardianproject

1

gnu

1
Librem Social

Librem Social is an opt-in public network. Messages are shared under Creative Commons BY-SA 4.0 license terms. Policy.

Stay safe. Please abide by our code of conduct.

(Source code)

image/svg+xml Librem Chat image/svg+xml