@fdroidorg at this point is being used to push out an app with sensitive permissions that’s been taken over by an unknown individual who refuses to engage with its large community of users and developers.
I STRONGLY recommend disabling updates from Fdroid, if not uninstalling and manually installing 2.0.11.2, or installing the Google Play version which has a different maintainer.
this is extremely shady and it’s just looking worse as time goes on. I’ll link to the Syncthing forum thread from about where I left off last time in a subsequent post.
Just want to add that suggesting to install the Google Play version instead because the poster (on mastodon) doesn’t trust the fdroid version anymore, is hilarious.
The Google Play version is maintained by someone who cooperates with the new fdroid syncthing-fork maintainer. There’s lots of github posts showing that. The fuck are you (the account on mastodon) suggesting that the fdroid version is not safe, but the Google Play version is? It is also way harder to not accidentally update the Google Play version.
Sorry, I won’t deny that the whole taking over the account thing hasn’t been super sketchy in terms of communication, but that is it. If you are uncertain, block fdroid updates for now, which is very easy, and wait what happens.
Edited to make it clear I am not flaming the OP here on Lemmy, I don’t agree with what the mastodon account says.
I don’t use syncthing but posted that tweet because it seemed of potential relevance to the the rest of the community.
Sorry, maybe it wasn’t clear but when I wrote “the poster” I didn’t mean you, but the mastodon account you have linked. I debated myself how to write this the best way without having to elaborate but I guess that failed.