An Open Letter Opposing Android Developer Verification https://feddit.org/post/26268445
Why ask Goggle's permission?
I've started using the Zapstore app store being built by the Nostr community. Zapstore is an app built around empowering developers to release and sign apps over the Nostr protocol without having to get permission from any app store or any other entity such as a tyrannical goveenment
F-Droid could release apps over the Nostr protocol, using their own Nostr ckient, and bypass Google completely.
Zapstore just released ver 1.0
Zapstore.dev
Zapstore would also have to verify itself and all its apps as Google verified will block any unverified apps, no matter the app store.
That's why you run a different fork of the Android Open Source Project (AOSP), which most of us privacy advocates as well, such as GrapheneOS or LineageOS.
I do as well, however that represents only a small part of f-droids userbase. A lot of people aren’t financiallt in the position to get a new device that support GrapheneOS/lineageos/eOS etc or need some apps that will only work on google verified devices
Lineage runs on a zillionolder older inexpensive phones.
If they can't figure somethjng out, then that's on them. I honestly don't care about zombie sheeple like them. They deserve what they get.
The less people use the app repositories the less support they get by app developers, they need any support they can get if they want to offer a decent number of apps
When you release an app using the Nostr protocol, clients like Zapstore grab the app directly from GitHub, GitLab or whatever platform the developer uses, bypassing the need for repositories.
Zapstore still has some kind of app repository, even if that isn’t the official name. And someone still has to publish the app
Zapstore is only a client that grabs Nostr events from Nostr relays and displays the "app release" events.
Any Nostr client could display those events.
You grab Zapstore from their website or GitHub, just like you do F-Droid.
But someone has to make sure that the apps are being added to Nostr, no? Or does it just display all apks published on Github/Lab/etc?
The developer post a release event whenever they have a new release of an app. Anyone can post a release event, so that's where the private key signature comes in so people can verify the release is from a legit trusted source.
