Wanted to run your own builder for #reproducibleBuilds and were disappointed our RBuilder Setup was only available for Debian-based systems? Then we have good news for you: a few min ago, 2 PRs have been merged. The setup scripts now also support RPM & Arch based systems 🥳

RPM/Arch lack packages for apksigner & dexdiff (which are needed for debugging). We're on it, those will follow hopefully soon™.

Thanks to @Iamlooker and Patrick (from FlorisBoard) for your help!

codeberg.org/IzzyOnDroid/rbuil…

rbuilder_setup

Scripts to automate setup of rbtlog, rbhelper, and their dependencies

^{Forgejo: Beyond coding. We Forge.}

We just got our first feedback on our RB builder setup scripts (codeberg.org/IzzyOnDroid/rbuil…) today, and that made us really happy, seeing a goal achieved:

> I did set up and ran your scripts in my Ubuntu server (noble) and found the process of setting it up a breeze, and it helped me a lot into finding the source of the issue.

So if you're an Android dev looking into getting your app RB, it might be worth a try!

#IzzyOnDroid #reproducibleBuilds

rbuilder_setup

Scripts to automate setup of rbtlog, rbhelper, and their dependencies

^{Forgejo: Beyond coding. We Forge.}

For our "automated builder setup", I've just prepared a PR adding support for RPM based systems. The PR is still marked WIP as I don't have any RPM test system at hand here – so I'm calling out for help:

Anybody willing to test the setup scripts on Fedora, RHEL, CentOS or the likes? 🙏

(more tests on Debian-based systems (Debian, Ubuntu, Mint …) are of course welcome, too)

codeberg.org/IzzyOnDroid/rbuil…

#reproducibleBuilds #Android

WIP: add support for installation on RPM based systems

Fixes #2 This adds support for installing the builder package on RPM based systems. Testing needed: someone running an RPM based system, please give it a try!

^Codeberg.org

Welcome to the RB family, Minimo Launcher 🥳

apt.izzysoft.de/packages/com.m…

Designed for users who want to de-clutter their home screen, Minimo offers a clean and intuitive minimalist interface that prioritizes functionality without unnecessary distractions.

And thanks to the efforts by its developer, its new release today is RB

RB status at IoD now: 530 apps (41.7%)

#IzzyOnDroid #reproducibleBuilds

„Minimo Launcher“ – IzzyOnDroid F-Droid Repository

Home screen without distractions. Improve your focus and productivity.

^{IzzyOnDroid App Repo}

Welcome to the RB family, RadioUpnp 🥳

apt.izzysoft.de/packages/com.w…

RadioUpnp reads any internet radio. Minimalist and full customizable. With support for UPnP/DLNA. And thanks to the efforts by its developer, with its latest release today it is reproducible

So the current RB status at the IzzyOnDroid repo is: 508 apps (40.6%)

#reproducibleBuilds #IzzyOnDroid

„RadioUpnp“ – IzzyOnDroid F-Droid Repository

Clean designed internet radio player with integrated UPnP/DLNA function

^{IzzyOnDroid App Repo}

🐣 oops… the Easter egg hatched early! We've just reached a goal we hoped to achieve around Easter:

At #IzzyOnDroid 40% – so 2 out of every 5 apps – are now #reproducibleBuilds 🥳

So whenever you see one or more green shields next to the version of an app in our repo browser at apt.izzysoft.de/fdroid you can be sure: this was built exactly from the source code it claims to be, nothing added or taken away.

Oh, and we should roll out those new shields soon™, so you see the independent builders 😉

#AndroidAppRain at apt.izzysoft.de/fdroid today just brings you 6 updated apps – but all of them are RB. Second time now that we can announce an "RB only" update

#reproducibleBuilds #IzzyOnDroid

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Want to try running your own builder – to confirm apps as #reproducibleBuilds or just to build your own apps? At #IzzyOnDroid we've just made "easy setup scripts" available which should take care for all requirements, while letting you choose which parts you want:

codeberg.org/IzzyOnDroid/rbuil…

These scripts are not yet thoroughly tested (just a bit on Linux Mint/Debian/Ubuntu), so we'd welcome volunteers & their feedback.

Thanks to @nlnet for supporting us on this project! You're awesome

Welcome to the RB family, DDNS Updater 🥳

apt.izzysoft.de/packages/xyz.p…

DDNS Updater is a simple Android app to update Dynamic DNS records for various providers. Thanks to the help by its developer, today's release finally is RB

RB status: 477 apps (38.9%)

#reproducibleBuilds #IzzyOnDroid

„DDNS Updater“ – IzzyOnDroid F-Droid Repository

Simple Dynamic DNS Updater

^{IzzyOnDroid App Repo}

Welcome to the RB family, Payload Dumper 🥳

apt.izzysoft.de/packages/com.r…

Payload Dumper lets you extract boot.img or any other (partition) images without any PC and without SuperUser (root) access, directly on your Android device.

Thanks to the help of its developer, with today's release this app is now RB

#reproducibleBuilds #IzzyOnDroid

„Payload Dumper Android“ – IzzyOnDroid F-Droid Repository

Extract boot.img or any other images without PC on Android

^{IzzyOnDroid App Repo}

Welcome to the RB family, Street­Measure 🥳

apt.izzysoft.de/packages/de.we…

StreetMeasure is an app to measure distances and heights. It was made for usage with StreetComplete and other OpenStreetMap editors. But you can use it for other things, too.

Thanks to the joint efforts with its author (thanks Tobias!), starting with v1.5 this app is now RB

RB status at IoD now: 471 apps (38.4%)

#reproducibleBuilds #IzzyOnDroid

„Street­Measure“ – IzzyOnDroid F-Droid Repository

Measure distances and heights

^{IzzyOnDroid App Repo}

Welcome to the RB family, GlucoDataHandler 🥳

apt.izzysoft.de/packages/de.mi…

Glucose Data Handler receives glucose values from LibreLinkUp, Juggluco or xDrip+ and provides widgets, notifications, sends glucodata broadcasts to other apps and more.

Thanks to the help of its developer, we were able to establish #reproducibleBuilds for it

„GlucoDataHandler“ – IzzyOnDroid F-Droid Repository

receives glucose data from from LibreLinkUp, Juggluco or xDrip+.

^{IzzyOnDroid App Repo}

@anyDr0id Ever scrolled down to the "Packages" section in our repo browser? Hover your mouse over those "green shields", click the question mark next to them for details 😉

Clients such as Droid-ify and Neo Store will support this soon™ as well. And there's apt.izzysoft.de/packages/dev.b… if you want a client to explore them right now™

#IzzyOnDroid #reproducibleBuilds #Android

#AndroidAppRain at apt.izzysoft.de/fdroid today brings you 8 updated (all RB) and 2 added (also RB) apps:

* ReTerminal: a Terminal Emulator 🛡️
* Dharmik: an offline app to browse Hindu texts (currently: Bhagavad Gita and Atharvaveda) 🛡️

Our first "RB only" AppRain, so to speak 🥳 Current RB status: 468 apps (37.7%)

3 #Magisk modules have been updated at apt.izzysoft.de/magisk

Enjoy your #free #Android #apps with the #IzzyOnDroid repository

#reproducibleBuilds

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

OK, #AndroidAppRain at apt.izzysoft.de/fdroid today once more brought you no new apps – but 25 updated ones, 13 of them (so every second one) RB. Numbers getting closer together now with ever more apps covered by #reproducibleBuilds at #IzzyOnDroid – our status currently is

457 apps (36.8%)

and counting. Let's see if we can make it to 40% …

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Welcome to the RB family, PObY-A 🥳

apt.izzysoft.de/packages/ch.ic…

PObY-A (Privacy Owned by You - Android) is an application which aim to help Android users to improve security and privacy of their devices.

Thanks to the help of its author, A-YATTA, this app finally is RB

RB stats: 447 apps (35.8%)

#reproducibleBuilds #IzzyOnDroid

„PObY-A“ – IzzyOnDroid F-Droid Repository

scanner to help improve privacy and malware detection

^{IzzyOnDroid App Repo}

Welcome to the RB family, Sefirah 🥳

apt.izzysoft.de/packages/com.c…

Sefirah is an opinionated phone link alternative designed to enhance your workflow with seamless clipboard and notification sharing between your Windows PC and Android device.

Thanks to the help of its dev, we finally managed to get it reproducible!

RB status now: 427 apps (34.3%)

#reproducibleBuilds #IzzyOnDroid

„Sefirah“ – IzzyOnDroid F-Droid Repository

Windows Notification Mirroring, Clipboard Sync, File Transfer, Media Control

^{IzzyOnDroid App Repo}

Welcome to the RB family, Hypatia 🥳

apt.izzysoft.de/packages/org.m…

Hypatia is the worlds first FOSS malware scanner for Android. It is powered by ClamAV style signature databases.

Thanks to some help by @asandikci from the MaintainTeam we managed to the the green shield up today

#reproducibleBuilds #IzzyOnDroid

„Hypatia“ – IzzyOnDroid F-Droid Repository

A real-time malware scanner

^{IzzyOnDroid App Repo}

#AndroidAppRain at apt.izzysoft.de/fdroid today brings you 19 updated (14 of those RB) and 2 added apps:

* Sefirah: the continuation of Sekia (Windows Notification Mirroring, Clipboard Sync, etc)
* Moneytopia: track your personal expenses 🛡️

Enjoy your #free #Android #apps (and #reproducibleBuilds) with the #IzzyOnDroid repository

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Welcome to the RB family, Lavender Photos 🥳

apt.izzysoft.de/packages/com.k…

Lavender Photos is a no non-sense, smooth, and performant gallery app. Thanks to the help of kaii, we finally got the green shield up!

And with this, the #reproducibleBuilds status of the #IzzyOnDroid now is: 421 apps (34%) of all apps covered!

„Photos“ – IzzyOnDroid F-Droid Repository

^{IzzyOnDroid App Repo}

Just added a few hours ago, and there we go:

Welcome to the RB family, OSS-Dict 🥳

apt.izzysoft.de/packages/com.a…

OSS-Dict is an offline dictionary reader. It is fork of Aard 2 with new Material design and updated features.

Thanks to some helpful hints (and hands) from its dev, farfromrefuge, the green shield is now up

RB status: 415 apps (33.7%) and counting!

#reproducibleBuilds #IzzyOnDroid

„OSS-Dict“ – IzzyOnDroid F-Droid Repository

Offline Dictionaries

^{IzzyOnDroid App Repo}

Welcome to the RB family, File Navigator 🥳

apt.izzysoft.de/packages/com.w…

File Navigator wants to be Your Ultimate File Sorting Solution.

I've no idea what its author did, as I never received an answer to my issue – but finally we could successfully build the app and then also make it reproducible

So RB status now: 414 apps (33.6%)

(we don't expect another egg soon, but hope to reach 40% when people roll them in spring 😜)

#reproducibleBuilds #IzzyOnDroid

„File Navigator“ – IzzyOnDroid F-Droid Repository

The missing link between Android and a well-structured file system

^{IzzyOnDroid App Repo}

Welcome to the RB family, TgMonet Theme 🥳

apt.izzysoft.de/packages/com.c…

With TgMonet Theme, you can create themes for Tg and TgX clients.

Thanks to Alexander's switching to CI builds, we finally succeeded establishing reproducible builds for his app. Thanks, Alex!

RB status now: 413 apps (33.5%)

#reproducibleBuilds #IzzyOnDroid

„TgMonet Theme“ – IzzyOnDroid F-Droid Repository

Simple Monet themes generator for Tg.

^{IzzyOnDroid App Repo}

Welcome to the RB family, MBCompass 🥳

apt.izzysoft.de/packages/com.m…

MBCompass is a simple, reliable compass app with a sleek design and accurate navigation.

Thanks to Mubarak Basha, its developer, for making this possible!

This brings us to a new milestone: also welcome the "3rd egg" 🐣

RB status: 410 apps (33.3%)

Meaning: each 3rd app, 1 out of 3, at IzzyOnDroid is now covered by RB 🥳

#reproducibleBuilds #IzzyOnDroid

„MBCompass“ – IzzyOnDroid F-Droid Repository

Simple and efficient compass

^{IzzyOnDroid App Repo}

Welcome to the RB family, Cirno 🥳

apt.izzysoft.de/packages/nep.t…

Cirno is an app freezer that runs on Android 12+ platforms, it is used to make background apps completely free of CPU resources to improve the overall smoothness of the device.

Many thanks to YuSaki丶Kanade to have established an Github action for consistent & clean builds, finally making this app pass RB

RB status now: 407 apps (32.7%)

#reproducibleBuilds #IzzyOnDroid

„Cirno“ – IzzyOnDroid F-Droid Repository

app freezer to make background apps completely free of CPU resources

^{IzzyOnDroid App Repo}

Welcome to the RB family, NoWakeLock 🥳

apt.izzysoft.de/packages/com.j…

NoWakeLock allows you to get control over Wakelocks, Services and Alarms. It requires the Xposed framework on the device.

As an app with elevated privileges (root) it's especially good we can now certify it was really built from the source it claims

Note the app had a transfer of ownership and uses a new signing key, so this update requires you to uninstall/reinstall the app.

#reproducibleBuilds #IzzyOnDroid

„NoWakeLock“ – IzzyOnDroid F-Droid Repository

control Android wakelocks with open source

^{IzzyOnDroid App Repo}

Welcome to the RB family, sNotz 🥳

apt.izzysoft.de/packages/com.s…

sNotz is a privacy-friendly, secure, and completely offline application to create, customize, and manage simple notes on your android device.

Thanks to @sunilpaulmathew for making this possible

Oh no, RB status says no apps found now: 404 apps (32.5%), we're working on it 🤞

#reproducibleBuilds #IzzyOnDroid

„sNotz“ – IzzyOnDroid F-Droid Repository

An open-source and completely offline application to manage simple notes

^{IzzyOnDroid App Repo}

#AndroidAppRain at apt.izzysoft.de/fdroid today brings you 12 updated apps (hey, all without that DependencyInfoBlob 🤩) and 1 added app:

* Octo: an unofficial FLOSS Octopus Energy agile tariff monitor 🛡️

RB stats: 401 apps (32.3%) – yupp, we crossed the 400! 🥳

At apt.izzysoft.de/magisk 5 #Magisk modules where updated.

Enjoy your #free #Android #apps with the #IzzyOnDroid repo and #reproducibleBuilds

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Welcome to the RB family, MMRL 🥳

apt.izzysoft.de/packages/com.d…

Magisk Module Repo Loader (MMRL) allows you to load custom #Magisk repos with a simple UI.

For an app with elevated privileges, a proof like RB is especially valuable. So thanks to DerGoogler for having made this possible

#reproducibleBuilds #IzzyOnDroid

„MMRL“ – IzzyOnDroid F-Droid Repository

A modules manager for Magisk & KernelSU

^{IzzyOnDroid App Repo}

@IzzyOnDroid has been doing an amazing job getting our repo to over 30% of apps being reproducible. Maintaining a rebuilder takes a lot of constant work. Thank you!

As I've written before:

[...] the ecosystem is constantly moving: old toolchain and dependency bugs get fixed, but new ones keep popping up. [...] Reproducible Builds are not just an item on a checklist [...] It's an ongoing process involving not just upstream app developers, but also maintainers of repositories, clients, and rebuilders; those involved in outreach and writing documentation; developers and maintainers of tooling, toolchains, and dependencies. And often requires a lot of collaborative debugging :)

See also our "Review of 2024 and Outlook for 2025: Reproducible Builds, Security Measures and more":

android.izzysoft.de/articles/n…

#IzzyOnDroid #ReproducibleBuilds

Rückblick auf 2024 und Ausblick auf 2025: Reproducible Builds, Sicherheitsmaßnahmen, und mehr

2024 winkt zum Abschied, 2025 klopft an die Tür: Was haben wir 2024 erreicht, und was sind unsere Pläne und Hoffnungen für 2025? Werft mit uns einen Blick zurück auf die eingeführten Sicherheitsmaßnahmen, auf die Fortschritte bei Reproducible Builds …

^IzzyOnDroid

Welcome to the RB family, NFC Alarm Clock 🥳

apt.izzysoft.de/packages/com.n…

NFC Alarm Clock lets you customize how your alarms look, easily create/delete alarms, and more. Each alarm can be configured however you want to use it. And you can also use an NFC card or tag to dismiss your alarm.

Was quite a trip – but thanks to the tremendous efforts put in by its developer, it's finally RB

#IzzyOnDroid #reproducibleBuilds

„NFC Alarm Clock“ – IzzyOnDroid F-Droid Repository

A customizable, lightweight, and open source alarm clock.

^{IzzyOnDroid App Repo}

Welcome to the RB family, Flut Renamer 🥳

apt.izzysoft.de/packages/net.s…

Flut Renamer helps you to effortlessly manage and rename files and directories – with features including inserting text, inserting file metadata and Exif data, replacing text, deleting text, rearranging, and more.

Thanks to joint efforts with its developer, the app is now RB

Current RB status at IoD: 391 apps (31.7%)

#IzzyOnDroid #reproducibleBuilds

„Flut Renamer“ – IzzyOnDroid F-Droid Repository

rename files in many ways

^{IzzyOnDroid App Repo}

#AndroidAppRain at apt.izzysoft.de/fdroid today brought you 18 updated apps. Usually I only toot the rain if there are added ones, but… This time, 12 out of those 18 were #reproducibleBuilds (that is 2/3 of the updates). 2 of those failed, 1 I was able to repair (the other not, so I'll have to see we get it fixed with upstream for the next release).

Enjoy your reproducible and #free #Android #apps with the #IzzyOnDroid repo

IzzyOnDroid F-Droid Repository

This is a repository of apps to be used with your F-Droid client. Applications in this repository are official binaries built by the original application developers, taken from their resp. repositories (mostly Github, GitLab, Codeberg).

^{IzzyOnDroid App Repo}

Welcome to the RB family, ShikiApp 🥳

apt.izzysoft.de/packages/org.a…

ShikiApp is a Shikimori (shikimori.one) unofficial mobile app. Thanks to the efforts of its author, it's now RB – bringing the RB status at IzzyOnDroid to 390 apps (31.6%)

#IzzyOnDroid #reproducibleBuilds

„ShikiApp“ – IzzyOnDroid F-Droid Repository

Unofficial Shikimori mobile app

^{IzzyOnDroid App Repo}

Welcome to the RB family, Mobile Tile Server 🥳

apt.izzysoft.de/packages/com.b…

Mobile Tile Server can be used as a HTTP server, serving Map Tiles from the device storage. When the server is running you can access the tiles from different mapping applications.

Thanks to the help of its author, Bogdan, the app now builds reproducibly

RB status now: 389 apps (31.5%) – so almost every 3rd app is covered meanwhile 🤩

#IzzyOnDroid #reproducibleBuilds

„Mobile Tile Server“ – IzzyOnDroid F-Droid Repository

HTTP Server for your local Map Tiles

^{IzzyOnDroid App Repo}

Welcome to the RB family, Play NotePad 🥳

apt.izzysoft.de/packages/com.m…

Play NotePad is a note-taking app with multimedia and organizational features, supporting hand-drawings, lists, reminders and more.

RB status now: 388 apps (31.4%)

#IzzyOnDroid #reproducibleBuilds #Android

„Play NotePad“ – IzzyOnDroid F-Droid Repository

Robust note-taking app with multimedia and organizational features

^{IzzyOnDroid App Repo}

Welcome to the RB family, Tack 🥳

apt.izzysoft.de/packages/xyz.z…

Tack is a modern metronome app for Android with a beautifully designed interface that has all the features you need for practicing a music piece accurate to the beat.

With release 4.5.0, the app is now RB – thanks to the help of @patzly (the app's author)

#IzzyOnDroid #reproducibleBuilds #Android

„Tack: Metronome“ – IzzyOnDroid F-Droid Repository

Beautiful metronome with a powerful Wear OS integration

^{IzzyOnDroid App Repo}

And to make finding, installing and updating easier, Sunup will become available at #IzzyOnDroid with the next sync around 7 pm. Congrats @unifiedpush – it has the "green shield up", meaning it's reproducible

But if you could get rid of that DEPENDENCY_INFO_BLOCK (a binary blob), that would be great. Easy to do, reach out to us for instructions, which do not fit into a toot – but wait, there are attachments, right? So for your build.gradle, see screenshot.

#reproducibleBuilds

Jetzt ist auch die deutschsprachige Version unseres "Jahresberichts" online:

Ein Blick zurück, ein Blick voraus: Wie war 2024 bei #IzzyOnDroid? Was mag Euch 2025 hier bringen, woran arbeiten wir?

android.izzysoft.de/articles/n…

Und wenn Euch jemand sagt, #security oder #reproducibleBuilds wären (einmal aufgesetzt) reine Selbstläufer: Lacht sie laut aus. Software entwickelt sich weiter – und so auch ihre Risiken und Threats…

Rückblick auf 2024 und Ausblick auf 2025: Reproducible Builds, Sicherheitsmaßnahmen, und mehr

2024 winkt zum Abschied, 2025 klopft an die Tür: Was haben wir 2024 erreicht, und was sind unsere Pläne und Hoffnungen für 2025? Werft mit uns einen Blick zurück auf die eingeführten Sicherheitsmaßnahmen, auf die Fortschritte bei Reproducible Builds …

^IzzyOnDroid

A look back, a look ahead: How was 2024 at IzzyOnDroid? What might 2025 bring you there, what are we working on?

android.izzysoft.de/articles/n…

And if anybody ever tells you #security or #reproducibleBuilds are "set-and-forget", laugh straight into their faces. Software evolves, and so do their threats and risks…

German readers: Die Deutsche Version folgt in Kürze…

#IzzyOnDroid

Review of 2024 and Outlook for 2025: Reproducible Builds, Security Measures and more

2024 waves goodbye, 2025 knocks at the door: what did we achieve in 2024, and what are our plans and hopes for 2025? Join us to take a look back at security measures established, at progress with Reproducible Builds – and for a look ahead of what mig…

^IzzyOnDroid