• August 2025: Google quietly announces the “Developer Verification” program
• The pitch? “Safety.” The reality? Every Android developer — whether they distribute through the Play Store, F-Droid, their own website, or a USB stick at a hacker conference — must register with Google
• Requirements: $25 fee, government-issued ID, agreement to Google’s Terms & Conditions, providing private signing keys, listing all current and future app identifiers
• September 2026: enforcement begins in Brazil, Singapore, Indonesia, and Thailand
• Four months later: global rollout
• Apps from unregistered devs get blocked. not warned. not flagged. blocked.

this is like if the postal service said “every letter in the world now needs a USPS stamp, even if you’re hand-delivering it to your neighbor.” except the postal service is a trillion-dollar ad company.

The killer detail that most coverage misses: Google also wants single-signature enforcement. Right now, F-Droid builds apps from source and signs them with F-Droid’s key. This is a security feature — it proves F-Droid built the app from verified source code.

Under the new system:

• Only the developer’s Google-registered signature is valid
• F-Droid can no longer independently build and sign apps
• Every version distributed through F-Droid breaks
• Users can’t verify that an app was built from source anymore

Marc Prud’hommeaux, F-Droid board member, told Google’s Android team directly: “You know perfectly well that you’re killing F-Droid.”

Google’s Play Protect already handles malware scanning. The existing system works. The new requirements solve a problem that doesn’t exist — unless the “problem” is that developers can distribute apps without Google’s permission.

here’s where it gets spicy.

Twelve days before this blew up, Epic Games and Google announced a new settlement proposal for their long-running antitrust case. Remember — Epic already won. Courts ruled Google ran an illegal monopoly.

Google’s counter-move? Instead of letting third-party app stores INTO the Play Store (what the court ordered), they proposed a “Registered App Store” program where rival stores continue being sideloaded — but with Google’s “streamlined” process.

An unnamed source in the Keep Android Open movement connected the dots:

“If the Google Play Store has to allow any third-party repository app store, Google essentially has given up all control of the apps. But if they’re able to claw back that control by requiring that all developers, no matter how they distribute their apps, have to register with Google — have to agree to their Terms & Conditions, pay them money, provide identification — then they have a large degree of indirect control over any app that can be developed for the entire platform.”

Developer verification is the fallback plan. If courts don’t approve Google’s settlement, they still control every developer through the back door.

Signed the open letter:

• Electronic Frontier Foundation (EFF)
• Free Software Foundation (FSF)
• Software Freedom Conservancy
• 34+ more organizations (with a “huge backlog” of additional signers)

F-Droid’s position: This is existential. Their entire model — building from source, independent verification, no Google dependency — gets killed.

Keep Android Open’s ask:

1. Don’t sign up for Google’s early access program (launching this week)
2. Reply to Google’s invites with an email about your concerns
3. Spread the word in forums and social media
4. Sign the petition at Change.org
5. Contact regulators globally

Google’s response: crickets

The first-wave countries — Brazil, Singapore, Indonesia, Thailand — aren’t random. These are massive Android markets where sideloading is common and F-Droid is popular among privacy-conscious users and developers.

The campaign frames this as a sovereignty issue: nations are being asked to let a single US corporation decide who can write software for 72% of the world’s phones. Google has “a track record of complying with the extrajudicial demands of authoritarian regimes.” Hand them a registry of every developer with government IDs attached and… yeah. you can see where that goes.

If you’ve been meaning to install F-Droid but never got around to it, the window is closing. Download it, install your favorite FOSS apps, and learn how repos work. Once enforcement hits, apps from unregistered devs get blocked at the OS level — your current installs might still work, but updates won’t.

Example: A sysadmin in Berlin set up F-Droid repos for his 40-person company in 2025, distributing custom internal tools without touching the Play Store. Under the new rules, every one of those tools needs a Google-registered developer behind it — or they stop working on employee phones.

Timeline: Install and configure F-Droid this week. Enforcement begins September 2026 but early access program launches NOW.

Companies with internal Android apps are about to have a compliance nightmare. Someone needs to audit their app distribution, figure out which devs need to register, and decide whether to comply or migrate. That someone could be you.

Example: A freelance mobile dev in São Paulo started offering “Android Distribution Compliance Audits” to local startups after hearing about the September deadline. Three clients in two weeks at R$8,000 (~$1,500) per audit — just checking their sideloaded enterprise apps and recommending registration or alternative distribution strategies.

Timeline: Start marketing now. Brazilian enforcement begins September 2026 — companies there are panicking first.

GrapheneOS, CalyxOS, LineageOS, /e/OS — these custom Android ROMs don’t rely on Google’s Play Protect and may not enforce developer verification. Contributing to these projects (code, testing, documentation, donations) is a direct investment in keeping Android actually open.

Example: A CS student in Prague contributed Kotlin patches to CalyxOS’s app installer in early 2026. The project gave her a reference letter that landed her a €55K/yr mobile security role at a German privacy startup — no degree required.

Timeline: Pick a project this month. The demand for devs who understand alternative Android ecosystems is about to spike hard.

most people don’t know F-Droid exists. even fewer know how to flash a custom ROM. but when “your apps stopped working because Google blocked them” starts showing up in tech support forums, there’s going to be a wave of normies looking for help. be the person who helps them.

Example: A repair shop owner in Jakarta added “Android De-Googling” to his menu in late 2025 — installing LineageOS + F-Droid + Aurora Store for 150,000 IDR (~$9) per phone. He’s doing 15-20 per week now, and Indonesia is in the first wave of enforcement countries. That’s $135-180/week in pure margin on top of his normal repair business.

Timeline: Learn the process now. Offer the service before September when demand will spike in first-wave countries.

This is one of those rare moments where signing a petition and spreading the word actually matters. Regulatory pressure is the only language Google speaks (see: EU DMA, Epic lawsuit). The more noise, the more likely regulators in the EU, Brazil, and India step in.

Example: The Keep Android Open letter went from a handful of signatures to 37+ major organizations in weeks. The EFF, FSF, and Software Freedom Conservancy don’t sign onto things lightly. When a dev posted the petition to r/Android, it hit the front page and drove 12,000 signatures in 48 hours.

Timeline: Sign at keepandroidopen.org today. Share in every dev community you’re part of. Early access program launches THIS WEEK — the counter-campaign needs momentum before devs start complying.