Yeah, that I know, but I was wondering if they publish the md5 of the apk or compiled app so that you can test later on or something. Or if it’s possible to check the md5 of the downloaded apps from the store. I am not sure why I am downvoted, I think it is a legitimate question.

Some bad guys could fork the app, add some changes and publish it in third party stores.

https://symantec-enterprise-blogs.security.com/blogs/threat-intelligence/open-source-apps-google-play

Something similar to this: https://www.infosecurity-magazine.com/news/malicious-python-libraries-found/

And I am not the first one asking this question:

https://opensource.stackexchange.com/questions/11098/what-guarantees-that-the-published-app-matches-the-published-open-source-code

Edit: a colleague just shared this with me! https://signal.org/blog/reproducible-android/

But where is the proof that the app code is the same as GitHub code? 🤔 do they provide some hash or something?

I haven’t said otherwise. I just said that fossil fuels are not a source of energy, just a carrier, it embodies solar energy captured millions of years ago.

https://www.resilience.org/stories/2018-04-26/there-are-just-two-sources-of-energy/

Indeed. But natural gas is just another carrier, the source of it is solar anyway. That’s why usually we speak about sources of electricity, types of electricity production or electricity mix.

Hydrogen is not a source of energy. Is an energy carrier. The main sources of energy are nuclear and solar. All others derive from these two. Exceptions may be tidal and geothermal but they constitute a very small fraction. Green hydrogen could be useful for industry but I have yet to see a big scale plan for it.