It seems that Google wants to make using app bundles a requirement for new apps on Google Play in 2021: youtube.com/watch?time_continu

This would mean developers have to upload their signing keys to google play even though there's no technical benefit in doing that. You can achieve the same efficient download sizes by using bundletool locally and uploading all generated apks. But it seems google will stop allowing that and just wants your signing keys.

Follow

@fdroidorg Doesn't centralise all the signing keys makes it a terrible terrible terrible idea from a security point of view? If someone manages to leak them it would wreak havoc in the app ecosystem. I'll start preparing popcorn while I wait for it.

· · Web · 1 · 0 · 2
Sign in to participate in the conversation
Cybrespace

cybrespace: the social hub of the information superhighway jack in to the mastodon fediverse today and surf the dataflow through our cybrepunk, slightly glitchy web portal support us on patreon or liberapay!