Replying to Avatar Luke Dashjr

This all assumes they trust the git hash is correct and unmodified or spoofed, both of which would be trivial to do. So they might as well just be taking your word for it...
Avatar
HoloKat 2y ago

This is probably true for every app. Nobody reads tos or the code or understands / cares how the info is handled and who has access to what. Only some developers might and the user trusts that enough devs looked at the code and confirmed that it’s not stealing everything from the user.

Reply to this note

Please Login to reply.

Discussion

fd
nobody 2y ago

Yes, I trust will 100%

Avatar
HoloKat 2y ago

There is trust in many things and people we rely on daily. It’s delusional to think we can live in a trust-less society. Trust-minimized, sure.

fd
nobody 2y ago

Yes, you have to be careful who you trust but some is good

Avatar
badonyx 2y ago

It is not true of every app. Bitcoin core has a reproducible build process. You can verify the published binary came from the published source. However I don’t think this is possible for iOS apps due to Apple’s signing process.

Avatar
HoloKat 2y ago

No non-dev user is verifying any binary. They will just install and use. The whole verification thing is for a tiny subset of people technical enough to understand it.