Just found out that my #Obtainium config could be optimised for automatic updates!

-–

Unlike on Linux and Windows, where getting apps from Repos is the best way to go, on #Android it is very common for developers to publish builds themselves.

Most are on #Github, but luckily not everything, quite some are on #Gitlab.com, #Codeberg or selfhosted git forges.

This is preferred, as the Android package manager already stores public signing keys (even across profiles), so a repository is not needed to guarantee safe updates.

There is #TOFU though; trust on first use. You need to verify somehow, that the app you first install is from a valid source.

This is also the reason, why app changes like #Syncthing or #Signal require uninstalling and reinstalling, as another key is used.

Obtainium allows to get often far quicker updates, more apps, and no reliance on re-distributors.

You will contact Github and Gitlab a lot though, so getting an API key (best with a separate account) is needed for it to work reasonably if you have over a handful of apps.

The F-Droid repo and compatible 3rd party repos are also supported, but #FDroidBasic is better as it is more efficient, better for the repo owners and you.

@android@lemdro.id @Android@lemmy.world @androidapps@lemmy.world @androidapps@lemmy.ml @android@programming.dev