{
  "$type": "site.standard.document",
  "bskyPostRef": {
    "cid": "bafyreic6jl375bwkr3ypcvkmdfippqrhw4qztdkwqowosmky6kfopza5fq",
    "uri": "at://did:plc:34cg4tn4iwemk3v5k3n3adwf/app.bsky.feed.post/3mlmwkjuvf2n2"
  },
  "path": "/t/it-is-built-and-signed-by-f-droid-and-guaranteed-to-correspond-to-this-source-tarball/34372#post_1",
  "publishedAt": "2026-05-12T04:01:46.000Z",
  "site": "https://forum.f-droid.org",
  "textContent": "In regard to this statement by F-Droid: “It is built and signed by F-Droid, and guaranteed to correspond to this source tarball.” I see there is a PGP signature provided with each apk, presumably this is a signature of the APK as signed data signed by the build server. Where to get the PGP public key the buildserver uses to sign built APKs?",
  "title": "It is built and signed by F-Droid, and guaranteed to correspond to this source tarball"
}