Look up "reproducable build". Its partly possible. Basically, you need to make sure to compile in the same environment for all people participating. Then make sure that all file dates in the APK are the same (zero?). Now, you can compare everything except the signature. The signature itself will always be different.
Topic: Is it possible to verify the APK file with the repository ? (Read 938 times)
I'm also looking at producing a Bitcoin android app (not a wallet) and want to be able to reassure users that the code I have on github compiles to the same APK as downloaded from the play store.
If anyone knows the answer to this I'd appreciate it.
Thanks.
If anyone knows the answer to this I'd appreciate it.
Thanks.
Jump to: