Building old popular apps in archive with new signature schemes and libraries



There are some popular unupdated apps moved to archive, and marked vulnerable because of old signature scheme and/or old ciphers / openssl libs.

for example:

  • Ghost commander SFTP plugin
  • Open Explorer beta
  • 920 editor / vimtouch

Is it possible to rebuild safer versions of these apps by modifying build description files to link newer libraries & signature scheme?


Have you raised the issues upstream to their developers?


F-Droid rebuilds are NOT developers’ concern.

Yet it’s good to

  1. check if the app source advanced since;

  2. if positive, ask devs to tag a new version


see as an example

closed #5

This topic was automatically closed 60 days after the last reply. New replies are no longer allowed.