Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

> They will also require devs to give a copy of their signing key to Google for them to sign applications.

What.



from the article...

>Mandatory Android App Bundles for Newly Published Apps in 2021

>The .aab file contains APK files for the base application and all supported architectures (ARM, ARM64, and x86), languages, and layout variants.

>This format requires giving a copy of your app’s signing key to Google so the Google Play Developer Console can generate a bundle with signed versions of each APK in the bundle; the correct APK for a particular device’s architecture, language, and layout are delivered via Google Play Dynamic Delivery....


Why require the key instead of a small db of signatures of all possible combinations? It seems Google wants the power to publish on your behalf arbitrary transformations of your software releases. That doesn't seem reasonable.




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: