Correct me if I'm wrong, but this looks really dirty...
Google play has waaaaaaay more dodgy apps than F-Droid has apps in total.
I knew one so called "corporate" MDM solution that was automatically marking malicious any app with signature different that from Google Play: built an app from sources? Doesn't give a sh..t — marks malicious.
Corporate sector doesn't recognize anything different from google play...
Server run by the main developers of the project It is not focused on any particular niche interest - everyone is welcome as long as you follow our code of conduct!