Good evening @Licaon_Kter
Well under my point of view that article has many flaws and attempts on privacy. Encouraging to use Google which is anything but secure and private.
From what I’ve been reading, they speak very well of the play store. And its security. But every little while things come out of the play applications that do everything but good things. For example
And many others…
Then they talk about the signature of the applications. I saw play apps updated from github or fdroid.
About it being faster in updates. That if. But of course in the play reaches more people and make money. Something that in fdroid not. But almost better to update from github or gitlab of the developer. Or wait for it to come out in fdroid.
Then the apk that you can download from apkmirror or other unreliable sites because they can bring everything. And I saw Google Protect (I think it was) that analyzes applications (which is included in the play store). Pass things and not detect anything. Instead there is an application that analyzed applications (now I do not remember the name) and gave you surprises.
They say that in fdroid are before the applications, or rather obsolete. That if it is true there are applications that are in fdroid for years and there are no updates. But you go to the developer’s github, and there if there are. For example amaze among others.
What I did not read in the article, is that the application of fdroid. It has access to nfc, bluthut (I always spell it wrong) and something else. But that it can lock in app manager or Xlua for example.
Then fdroid or github what if they tell you the permissions as they are for each application. The play no. Even in terminal settings, applications, the app that is, permissions. Then show hidden you will see more hidden permissions and not mentioned. Not to mention the permissions that have applications: Google Play services, Google Rv (I think it was called), Play store, Google and some other …
Then fdroid you can remove it to boot with the system. And you do not spend data saying you have updates. A phone with pure Android and Google Play. Saldra the notice that you have updates. And it is not the first time I saw that things were updated alone. Even having marked check for updates and install manually. For example in Htc Desire 820 that I got I have it rotated but as it is single sim does not have lineageos. If it were dual sim if I had it. And I have it with supersu. And with Android and put Afwall, sd maid and some other with root permissions. And you block many things. I use it for testing. And without google account, since I do not have (nor want). And even using an old android gets rid of connections and you can make things from Android itself do not go. And so get rid of an endless number of things. But I’ve already gone off the deep end…
The problem is that a Play application. If you don’t know how to get the code you won’t see it. And to know. Apart from what Google asks developers to upload it to your store. And in the open source if you see it. And if you can also add bad things. But that as putting a license to windows with a crack. Or use paid applications from the play, downloading the apk from sites out there … Yes there are also applications like https://simplemobiletools.com/ that are in the play, github and others. But for example you will see applications and same name but developers to know in the play. Many with gifts and so on, which the original does not have. Not to mention the different permissions.
I think it would almost be better to download things from FDROID, github, gitlab, of the developer. Because this way you can also create a suggestion, or say this fails and so on. For play, you can write a review. Or send an email. Little else.
In the article says The F-Droid client allows several repositories to coexist within the same application. So the Play that allows copy on copy of applications and on gifts without monitoring either one or the other … But fdroid has for example the repo of the creator of Newpipe, newpipe inside fdroid (for example). What fdroid does have, is that you can download the first application. That is, if you activate fdroid archive you can see Icecat or the first fennec stuff. Something that in the play, if I’m not fooled that can not be done.
Even github and gitlab is not the panacea, since github is from Microsoft. And if it were in Codeberg for example it would be better. But well…
If I didn’t misunderstand the article when I read it but it’s my reliable opinion … It is like what it speaks of that under the permissions RECEIVE_BOOT_COMPLETED because the hidden ones of the things downloaded from the play, that use that and others… (I repeat myself hahaha)
By the way the funny thing of the article is :
In addition, Play Store restricts the use of highly invasive permissions , such as MANAGE_EXTERNAL_STORAGEthose that allow apps to opt out of limited storage if they cannot work with more privacy-friendly approaches (such as a file explorer). Apps that cannot justify the use of this permission (which again must be granted dynamically) can be removed from the Play Store.
Here excuse me but I crack myself up. For example a simple file cleaner Lte cleaner fdroid LTE Cleaner | F-Droid - Free and Open Source Android App Repository and in the google play has network permissions, see your connections and so on. Otherwise check out Thoughts on optional ads? · Discussion #205 · TheRedSpy15/LTECleanerFOSS · GitHub . Among many other applications. If the Google Play already has each permission that you do not see hehehe
Everything has its bugs and so on. And if not I put as an example an application that is on github and play. But not in fdroid. https://github.com/D4rK7355608/com.d4rk.cleanerSiendo an application that joins Lte Cleaner, Cache Cleaner, Clipboard Cleaner among others. The permissions and connections and advertising that has if you download it from Play Store or Github… and for example Clipboard Cleaner that is included in the code d4rk.cleaner code, has permissions https://f-droid.org/es/packages/io.github.deweyreed.clipboardcleaner/ and no telemetry and weird stuff.
In short the article says use Google things that you get rid of everything. And the rest well do not touch and look for bad things to do to fdroid. I will never use Play and I will use Fdroid.
A hug and sorry for the long text