Mastodawn

We need to fight Google's new ID requirement for app developers. It isn't like showing ID at the airport. More like showing it at the printing press and only IDed authors are allowed to print books.

What Google doesn't talk about is that they build this ID system to ban developers and their apps.

Unfortunately, developers on Google Play are already used to this system and people have accepted Apple, so I this will be a hard fight. Digital ecosystems being closed "to keep us safe" isn't seen as a bad thing.

Also the general trend of Google becoming more closed may make even custom ROMs impossible eventually.

In the past, when books were censored and forbidden, people could still print them in their basements and spread them. Everybody who got their hands on one, could read it. This won't be possible anymore in our new digital age.

Source: https://developer.android.com/developer-verification/guides/android-developer-console

Under-reported detail: If you don't pay a fee to Google, they limit how many people can install your apps and how many apps you are allowed to have.

Android developer verification | Android Developers

Android Developers

Apple iPhone 3s Aug 27, 2025

https://docs.google.com/forms/d/e/1FAIpQLSfN3UQeNspQsZCO2ITkdzMxv81rJDEGGjO-UIDDY28Rz_GEVA/viewform?usp=dialog

Torsten Grote

Google asks what we think of their plans to block Android app installs outside of Google Play (unless the developers let Google verify their identity and pay a fee).

Want to tell them your opinion, just submit this form:

Android developer verification requirements

Use this form to submit questions or feedback about the new Android developer verification requirements announced in August 2025. You can learn more about the requirements in the Android developer verification guide. Sign up for early access here.

Google Docs

The @commonsguy has some uncomfortable Questions About Android Developer Verification for Google: https://commonsware.com/blog/2025/08/26/uncomfortable-questions-android-developer-verification.html

Uncomfortable Questions About Android Developer Verification

Google announced a program that is proving to be unpopular among Android app development experts. I have questions.

CommonsWare: Android App Development Books

Torsten Grote Sep 18, 2025

Android published new APIs that seem to confirm that your phone will phone home when you install apps. It will refuse installation when you are offline or developer got blocked by Google:
https://developer.android.com/reference/android/content/pm/PackageInstaller#DEVELOPER_VERIFICATION_FAILED_REASON_NETWORK_UNAVAILABLE

PackageInstaller | API reference | Android Developers

Android Developers

Torsten Grote Sep 18, 2025

The documentation also talks about a "developer verification policy" that may allow "the user to bypass a verification failure caused by network issues".

Also, there will be a "lite version of the developer verification", but what this means is still unclear.

Torsten Grote Oct 1, 2025

Google now says "we are also introducing a free developer account type that will allow teachers, students, and hobbyists to distribute apps to a limited number of devices without needing to provide a government ID."
It is unclear how verification will look like.
https://android-developers.googleblog.com/2025/09/lets-talk-security-answering-your-top.html

Let's talk security: Answering your top questions about Android developer verification

News and insights on the Android platform, developer tools, and events.

Android Developers Blog

Fossveil Oct 1, 2025

@grote carrot and stick from Google

The Mad Hatter Sep 19, 2025

@grote It's the year of the linux phone?

Richard Wonka Aug 26, 2025

@grote also, they’re likely to ignore public opinion on this as much as they have in the past.

Eric Lawton Aug 27, 2025

@richardwonka

Google exec A: "Let's measure public opinion on this"

Google exec B: "Why? We'll still do what we already decided."

A: "So we can set the lobbying and marketing budget high enough, but not too high".

Billie Aug 26, 2025

@grote what is likely the best feedback to give to make them drop these plans? (Please no cynical answers, negative feedback might be worth a try.)

@Billie I tried to be constructive in my feedback, asked them if they considered different solutions to the malware issue like scarier side-loading prompts which educate users better.

Bobo_PK 🦄Aug 26, 2025

@grote @Billie I told them that I hope they get sued by the EU and be forced to allow side loading like Apple is.

Soulfire The Wolf

Aug 26, 2025

@Bobo_PK @grote @Billie That would not work because the verifications don’t require distribution through the Play Store. This prohibits users from installing apps unless developers actually verify their apps through Google. It’s like Apple’s notarization system on the Mac. Only far more strict in that there’s no option to override the block of installing apps that aren’t notarized.

Soulfire The Wolf

Aug 26, 2025

It’s really stupid as well since apparently you can now bring back the “allow apps from… Anywhere” option in macOS sequoia by entering the command ‘sudo spctl --master-disable` in the terminal.

I personally wouldn’t recommend this, but if you hate authority telling you what to install, it’s there.

Navi

Aug 27, 2025

@Bobo_PK @grote @Billie Then, you did not understand any of this. Even for sideloading, typically for signing, you still need to pay Apple and get verified there.

Bobo_PK 🦄Aug 27, 2025

@navi @grote @Billie 90$ a year seems okay for a western developer. My point is not that Apple is doing it right but rather that we have consumer rights that uphold in court.

Navi

Aug 27, 2025

@Bobo_PK @grote @Billie why the fuck should Google get to decide if I get to develop apps is my point.

Or Apple, for that matter.

This shit sucks.

Bobo_PK 🦄Aug 27, 2025

@navi @grote @Billie I totally agree with you. My device - my choice of software.

Протест и сопротивление Aug 28, 2025

@Billie @grote I told them how it is: that I'm already about 80% done with degoogling and the remaining 20% is just a matter of time.

They're deluded if they think any of their products is necessary and unavoidable.

@grote https://oniroproject.org/

Celinho Aug 26, 2025

Oniro

The Oniro Working Group creates an ecosystem of organizations to support the community in the production and evolution of the Oniro technologies as well as to …

oniroproject.org

Jason P 🇺🇦 🌍🌎🌏Aug 26, 2025

@grote Response submitted: As a CS professor, the main reason I use Android to teach mobile development is that we can sideload. The Android ecosystem was never solely Google's property but belongs just as much to the developers and users. Trying to wall off the system at this late date will surely backfire.

al3xsh Aug 27, 2025

@wirthy @grote this was pretty much my exact feedback too. The ability to sideload apps is essential for hobbiest developers! It was the way I got into android development many years ago.

paradox Aug 26, 2025

@grote
Can we just share our opinion online instead of a form and Evil corp will suck it into a data lake?

Lyubomir Ganev

Aug 26, 2025

@grote great find. I did my part. I hope it has any impact.

Silmathoron ⁂Aug 26, 2025

@grote is this even something they can legally do given their recent loss in court in the US and EU legislation?

@silmathoron @grote it's just more brinksmanship.

Diane Aug 26, 2025

This policy change feels like an effort by google to maintain their monopoly while still complying in letter with the EUs laws on requiring support for multiple app stores.

@alienghic @grote bingo

Wilfried Klaebe Aug 27, 2025

Well, EU actually requires them to not gatekeep, which they wouldn't comply with.

@alienghic @grote

Some Kind Of Garf Aug 26, 2025

@grote This feels like it has the ulterior motive to finally kill revanced.

Some Kind Of Garf Aug 26, 2025

@grote Told them the only way they care; If they're gonna be no different than Apple, I'm just gonna take my money over there.

Bart Louwers Aug 26, 2025

@grote How do we know this is coming from Google?

Wurzelmann Aug 27, 2025

@bart

here: https://chaos.social/@grote/115096912775219678

Torsten Grote (@[email protected])

@[email protected] I only know that it is linked to at the bottom of this official page: https://developer.android.com/developer-verification

chaos.social

Bart Louwers Aug 28, 2025

@wurzelmann @grote Yes, found it. Thanks!

Viktoria D. Richards/Uddelhexe Aug 26, 2025

Do i understand it right, that having open source Apps from F-Droid would be no longer be technically possible on an Android phone that is not degoogled (like Murena)?
So you'd only be able to download Apps from Playstore if this becomes reality?
And ANY App developer has to pay a fee to google in order to he "verified" as allowed App?
Which gives Google finally complete controll over the App market on Android side from that day on?

@v_d_richards Yes, unless F-Droid or the devs register their apps with Google. If they have few apps and few installs, they may be able to do it without fee, but will need uploading government ID.

Viktoria D. Richards/Uddelhexe Aug 26, 2025

But i would be still able to do sideloading with say a Murena phone?

I doubt that Google will allow sideloading Apps like NewPipe that matter of factly do stuff they don't like, like allowing to watch Youtube with playlists but without showing your own IP.

This plan is complete monopolization to app usage on google and i hope they get sued.

@v_d_richards Yes, the Google Play Services will be doing the blocking. So any ROM without those will do. However: https://chaos.social/@grote/115094550898307577

Torsten Grote (@[email protected])

People saying "But I use a degoogled custom ROM, so I won't be affected" are missing the point. Apps not on Google Play are already a niche. Banning them on most people's devices is a big issue, even if some people can still escape. Also the general trend of Google becoming more closed may make even custom ROMs impossible eventually.

chaos.social

Viktoria D. Richards/Uddelhexe Aug 26, 2025

At the end of the day there is only solutions to prevent this from becoming reality ( google voluntarily stopping their world domination fantasys is not one of them.)

- legislature stops them to take complete controll over every function the moble phone usage on the Android side

- companies offer their Apps on other stores ( which Google will try to prevent too by telling them: if you do, you will be banned from playstore)

If this is not stopped ny law, google is inavertable.

LukefromDC Aug 27, 2025

@grote @v_d_richards So on a phone that is not supported by any 3ed party ROM, ADB uninstalling Google Play Services kills this?

That would work for me, though apps from non-ID uploading devs will not be able to coexist on the same phone with Gapps. That might limit the availability of such apps, though it won't effect anyone writing apps for non-Google Play devices only.

I refuse to allow any part of Google Play into any device containing my contacts, files or any sensitive communications apps

@LukefromDC @grote @v_d_richards Every day it seems a bit more likely I need to turn a phone into just a hotspot and then actually just do stuff on a non-Googled mini tablet of some kind.
I do so few voice calls over the mobile network itself that I could probably make it work. And at this point I'm keen to go and spend money on someone other than Google just as a Fuck You.

Viktoria D. Richards/Uddelhexe Aug 27, 2025

@quokka1 @LukefromDC @grote

Fun fact: i also entertained that idea.

And maybe from this workaround could stem a niche gadget alternative.

Like:
A phone, that is simple/small like the old ones. You can phone/SMS/take photos on the Device itself ( + some retro snake games and shit) and it can serve as hotspot.
Combined with
A second device between smartphone and tablet size that uses Linux based software that has a simplified surface for easy access to programms like Signal and Co

@v_d_richards @LukefromDC @grote yep. almost exactly. Ideally I could get my service number ported to a VoIP number and then would just need a fairly dumb hotspot. I've moved most everything I can over to a VoIP number. Bizarrely I've found only one system that won't let me register/use my VoIP number - #PayPal Reminds me I should go revisit that now as there's no reason for them to have/use my service number

@LukefromDC @grote @v_d_richards how do you get reliable real time notifications?

DocWolle Aug 29, 2025

I rather think it will be PlayStore and not PlayServices. PlayStore contains PlayProtect and currently it can be switched off there. Probably this switch simply will not exist anymore in future.

https://hear-me.social/@Lacze/115025485211043855

• Łącze Sep 29, 2025

@v_d_richards

• Łącze (@[email protected])

MicroG /e/OS, LineageOS, Calyx...⁣⁣ ⁣⁣ 📳 Looking for information? A small summary:⁣⁣ (...microG is a partial reimplementation of some of the functionality in the Google Mobile Services (GMS) app. Unfortunately, this approach has significant drawbacks. In order to install microG, your version of Android OS needs support for spoofing the cryptographic signatures of apps. Some OSes like LineageOS and CalyxOS allow this. See...) https://news.ycombinator.com/item?id=30170255 (...microG downloads proprietary Google libraries and then uses them...) https://discuss.grapheneos.org/d/10793-clarification-about-microg-what-is-it-is-it-insecure/3 /e/OS is heavily marketed as private but in reality it has enormous privacy issues like this with their default apps and services. It's also heavily marketed as avoiding Google services but yet has privileged integration for Google services and connects to multiple by default. https://grapheneos.social/@GrapheneOS/114880787210183683 /e/OS doesn't keep up with basic privacy or security patches for the OS or browser engine used not only for the default browser but also the WebView used by many apps including email clients and far more for rendering web-based content. For more info see ⁨https://discuss.grapheneos.org/d/24134-devices-lacking-standard-privacysecurity-patches-and-protections-arent-private⁩. /e/OS is an extraordinarily insecure and non-private OS. The feature you're talking about heavily misrepresents what it does and doesn't prevent app tracking as it claims. What they provide is a poor implementation of DNS-based filtering to block connections not required for apps to function. The vast majority of privacy invasive behavior is left intact. It's also trivial for apps to fully bypass it for anything they want to do, and many apps do bypass it already. https://grapheneos.social/@GrapheneOS/114881066260884661 Murena is scamming people at a large scale for profit. They're pretending to provide a private OS which is in reality not at all private. We've explained how it lacks the most basic privacy and security. It even sends sensitive user data to OpenAI without informing users, which is far worse than how Apple and Google are handling speech-to-text from a privacy perspective. Contrary to their marketing, it gives extensive privileged access to Google services and always connects to them. https://grapheneos.social/@GrapheneOS/114881101019302892 /e/OS and Murena are scammers causing substantial harm to people through selling them extraordinarily insecure and non-private devices. It's a blatant grift for profit, not a serious attempt to provide people with better privacy or security. They do the opposite of that. @[email protected] We currently support every device meeting the very reasonable requirements listed at ⁨https://grapheneos.org/faq#future-devices⁩. The purpose of GrapheneOS is providing people with privacy, not scamming them like /e/OS. https://grapheneos.social/@GrapheneOS/114881674418740613 /e/OS does not provide basic Android and Chromium privacy/security patches without huge delays while misleading users about it. They outright fail to ship huge portions of the patches for many months or even years. They substantially roll back the standard privacy/security model and features too. They aren't doing the bare minimum to protect user privacy and security. They're streaming's people microphone audio to OpenAI without telling them beyond a Terms of beyond https://grapheneos.social/@GrapheneOS/114881915272221151 /e/OS is streaming user's microphone audio to OpenAI without telling them when they use speech-to-text. Meanwhile, Apple and Google at least support doing it locally. /e/OS is misleading users about the many missing privacy and security patches including setting a false Android security patch level and changing the user interface to downplay it. What's that if not having backdoors? /e/OS has repeatedly covered up their security weaknesses and vulnerabilities. https://grapheneos.social/@GrapheneOS/114882333091531816 Here's information from the founder of DivestOS: Issues with /e/OS: ⁨https://codeberg.org/divested-mobile/divestos-website/raw/commit/c7447de50bc8fadd20a30d4cbf1dcd8cf14805a0/static/misc/e.txt⁩ ASB update history: ⁨https://web.archive.org/web/20241231003546/https://divestos.org/pages/patch_history⁩ Chromium update history: ⁨https://web.archive.org/web/20250119212018/https://divestos.org/misc/ch-dates.txt⁩ Chromium update summary: ⁨https://infosec.exchange/@divested/112815308307602739⁩ Here's an article from a privacy and security expert (Mike Kuketz) which touches on various issues including severely delayed patches, user tracking in the update client and privacy invasive default connections: ⁨https://kuketz-blog.de/e-datenschutzfr⁩ https://grapheneos.social/@GrapheneOS/114897292162814250 LineageOS is not a private or secure OS. microG is not a good implementation of providing compatibility with apps depending on Google Play and contrary to many people's misconceptions does not avoid using Google Play code as part of each app using it. We're building our own replacements for Google apps and services with a focus on privacy, security and providing fully comparable functionality and usability. We avoided microG because it doesn't meet our privacy and security standards. https://grapheneos.social/@GrapheneOS/114880999016665611 - eos987

hear-me.social -- Tell us

cryxli Aug 26, 2025

@grote Done.

I do not expect to hear back from them in 5 business days...

mcc Aug 26, 2025

@grote Hello, where did you find this URL? How can we confirm Google is the one who owns this Google Doc?

@mcc I only know that it is linked to at the bottom of this official page: https://developer.android.com/developer-verification

Android developer verification | Android Developers

Get started building your Android apps.

Android Developers

mcc Aug 26, 2025

@grote Thanks very much. What I figured out after posting the above is if you look at the bottom of the page you can see the name of the organization that posted a survey and the organization name for this one is google.com .

Bitslingers-R-Us Aug 26, 2025

@grote "Please share your Email Address *"

"* Indicates required question"

Jan Penfrat Aug 26, 2025

Thank you @grote for sharing this.

In addition to telling #Google that locking down #Android is bad, I'd also recommend every app developer to write to the @EUCommission's #DMA enforcement team and tell them that this practically circumvents Article 6(4) of the #DigitalMarketsAct, which was supposed to *enable* 3rd party app (stores).

The EC is discussing the same question with #Apple atm and they have to understand what happens if they let this happen.

Contact form:
https://digital-markets-act.ec.europa.eu/contact-dma-team_en

Contact the DMA team

Contact form to contact the DMA team

Digital Markets Act (DMA)

Klaus Frank Aug 27, 2025

@ilumium @grote

Good idea, didn't know what the formal process for that was up until now.

Hope that just mentioning the @EUCommission is already enough for them to get active by their own accords especially because this is an ongoing for multiple years by now...

Jan Penfrat Aug 27, 2025

@agowa338 I would certainly love that but I fear the EU Commission's Mastodon account isn't monitored by policy staff. But who knows maybe I'm overly pessimistic :)

CC @grote @EUCommission

@ilumium @grote @EUCommission

Klaus Frank Aug 27, 2025

Well back then when every company and organisation still were at Twitter contacting their social media accounts used to be the best available form to actually get your point across and have it forwarded internally to the responsible person...

gunstick Aug 28, 2025

@ilumium @grote @EUCommission
Wrote this:

Google plans to require all developers only being allowed to publish apps through their play store and nowhere else. This to control malware. Which is not the real reason as people get most of malware from the google play store and not via alternate ways.
Many small hobbyist apps will stop existing as those developers even don't have the money to pay google to get verified.

Torsten Grote Sep 1, 2025

@ilumium
The
@EUCommission responded: "the DMA also permits Google to introduce strictly necessary and proportionate measures to ensure that third-party software apps or app stores do not endanger the integrity of the hardware or operating system or to enable end users to effectively protect security."

So the question is if it is necessary and proportionate.

@grote @ilumium @EUCommission

Lucas Lasota Sep 1, 2025

The Commission has conducted a study on security of mobile devices, and several FS people and projects took part. The initiative was kept under strict confidentiality, but I guess these factors of proportionality and necessity were in scope of the study.

https://www.developmentaid.org/tenders/view/1176464/dma-study-on-mobile-ecosystems-technical-and-security-issues-2023-012

Piotr Gaczkowski Aug 26, 2025

@grote dafuq!

Idaho Aug 26, 2025

@grote I guess this will make people root their phones to be able to do shit with their phones, just like the old days, I hope hackers will take these matters into their own hands if it becomes too strict, in the meantime I'll just ensure I buy phones that can be flashed with custom ROMs or at the very least be rooted...