When zap.store is ready i'll change the keys and start publishing the hashes
For now you can check if Amber is signed with the key 56dc631996a55c2284790448c7dc9f1dd05df596b2ce4882313633f5602e5fe4 and try to check if the apk is reproducible by building it and see if it matches the content inside the apk
The best way of doing this i found was adapting the signal docker file
https://github.com/signalapp/Signal-Android/tree/main/reproducible-builds
If you dont want to do this its better to wait for when i start signing with my new keys in zap.store
greenart7c3
npub1w4…d0jr5
2024-09-11 10:26:23
in reply to nevent1q…j85s
Author Public Key
npub1w4uswmv6lu9yel005l3qgheysmr7tk9uvwluddznju3nuxalevvs2d0jr5Published at
2024-09-11 10:26:23Event JSON
{
"id": "5dd2fccfede724788fdb8cf22020d9b8915777751893addc1c628dac7ffd2355",
"pubkey": "7579076d9aff0a4cfdefa7e2045f2486c7e5d8bc63bfc6b45397233e1bbfcb19",
"created_at": 1726050383,
"kind": 1,
"tags": [
[
"e",
"9e3f9eafc1c4bc22e3d04b5bc6a3373c7ada6a581a26263b13a325f1d35203d6",
"",
"root"
],
[
"e",
"9e3f9eafc1c4bc22e3d04b5bc6a3373c7ada6a581a26263b13a325f1d35203d6",
"",
"reply"
],
[
"p",
"24e37c1e5b0c8ba8dde2754bcffc63b5b299f8064f8fb928bcf315b9c4965f3b",
"",
"mention"
]
],
"content": "When zap.store is ready i'll change the keys and start publishing the hashes\nFor now you can check if Amber is signed with the key 56dc631996a55c2284790448c7dc9f1dd05df596b2ce4882313633f5602e5fe4 and try to check if the apk is reproducible by building it and see if it matches the content inside the apk\nThe best way of doing this i found was adapting the signal docker file\nhttps://github.com/signalapp/Signal-Android/tree/main/reproducible-builds\n\nIf you dont want to do this its better to wait for when i start signing with my new keys in zap.store",
"sig": "9d046f0cd5bb59b80e068cf3c666208f97cb1a2eb4baaff94d99e18442002bd0614ec7a7b0ebf99dd8b4e5e9a1a13631e7a2e50c3c07ee168680836c7b6d7c10"
}