>Google Play distributed APKs contain their signatures https://support.google.co... | Hacker News

Hacker Newsnew | past | comments | ask | show | jobs | submit

		gruez on April 23, 2020 \| parent \| context \| favorite \| on: The ProtonMail Android app is now open source >Google Play distributed APKs contain their signatures https://support.google.com/googleplay/android-developer/answ... >Note: Using app signing by Google Play is optional. You can still upload an APK and manage your own keys instead of using an app bundle

Foxboron on April 23, 2020 [–]

That is not really the point. The signatures are embedded in the APK. Repacking it to remove, or add valid signatures, would be a problem.

Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact