Final on nostr

I don't understand. Isn't Nekogram open source? Why all the adb and injection stuff? Is it not in the source?

The source code does not match the compiled binary they distribute. There is only blank example code with the bot IDs empty, while the compiled binary had it configured.

1❤️1💩1

Blue · 3d

Weren't reproducible builds the whole point of F-Droid and similar app-stores?

chrizzz · 2d

Oof that's even worse than I thought

Hello · 2d

Aren't the binaries built on GitHub? I'm a little confused how they are able to inject malware. How can we trust open source code if what is compiled differs from the source? Sorry if this is a dumb question.