It wants me to uninstall and reinstall since the signature of different, which makes sense as it from a different source, but it doesn’t mention anything in the changelog.

  • bbbhltz@beehaw.org
    link
    fedilink
    arrow-up
    1
    ·
    1 year ago

    Jerboa is provided by both repositories. Izzy’s pushed the update before F-Droid’s is all. You can switch to Izzy’s or wait or DL the apk from GitHub but signatures are different for all three.

    • chris2112@lemmy.world
      link
      fedilink
      arrow-up
      1
      ·
      1 year ago

      Do you know why the signatures would be different? At my company we release our app on Google play, galaxy and Amazon store and I’m pretty sure we use the same signing key for each

      • Ɀeus@lemmy.world
        link
        fedilink
        arrow-up
        1
        ·
        1 year ago

        because fdroid build all of their apps themselves, so every app on the fdroid repo uses the fdroid signing key

        • chris2112@lemmy.world
          link
          fedilink
          arrow-up
          0
          ·
          1 year ago

          Interesting, I was not aware of that. sounds like a security risk, as you don’t know who actually published it, but I guess since its open source that doesn’t really matter as much

          • Moonrise2473@lemmy.ml
            link
            fedilink
            arrow-up
            1
            ·
            1 year ago

            It’s actually the opposite, an evil developer could upload in GitHub an apk with malware not included in the source, while fdroid guarantees that it matches with the source published