security audit is coming
@All We will be getting a security audit from an awesome firm Radically Open Security. Anyone who is interested in participating in the process, you will need to provide your name as well as PGP email or SMS number so you can be setup on their forum that they use for the process. Part of that conversation will be figuring out what exactly they will be auditing. These are the things that come to mind for me:
- Privileged Extension
- whether the server can track the client
- Repomaker
- f-droid.org infrastructure pen test
Even if you are just curious, please join in this process. The more the merrier! It'll mostly just be forum discussions that you can join in or follow as time permits.