No need, all you have to do is read the whitepaper. they home brewed the encryption algorithm and nobody actually knows if it’s worth a damn. That’s not exactly a secret.
nobody actually knows if it’s worth a damn.
After all these years, security researchers still don’t know if the encryption is any good?
On that level it usually falls on computer scientists. Formal methods can prove that any implementation is correct, but proving the absence of unintended attacks is a lot harder.
Needham-Schroeder comes to mind as an example from back when I was studying the things.
They don’t have reproducible builds afaik (unlike Signal). You can have a completely different code running on your phone than on GitHub.
Besides, who is using Secret Chat anyways? All default chats and group chats are unencrypted.
You can have a completely different code running on your phone than on GitHub.
Just use the F-Droid version if there is any doubt.
Besides, who is using Secret Chat anyways?
Probably Russians who used Signal before.
The F-droid version is also not reproducible. The binary you install has a different hash than the one you build from the GitHub.