Maintaining our own AppVerifier directory

1. The app has functionality to share hashes for this reason (to share with a friend) 2. You would still want a corroborating source in case you don’t trust GitHub (if the developer publishes a hash in their readme), or for the much more common situation where a developer doesn’t publish this information at all.