search

guardianproject / haven

Haven is for people who need a way to protect their personal spaces and possessions without compromising their own privacy, through an Android app and on-device sensors
https://guardianproject.github.io/haven/
GNU General Public License v3.0
6.62k stars 728 forks source link

2021 Milestone: 2% complete #456

Closed lukeswitz closed 2 years ago

lukeswitz commented 2 years ago

We are all waiting on @n8fr8 to either resurrect or sunset this project. Many items in the Spring 2021 sprint aren’t assigned or assignable, as they are broad ideas without guidance on protocol choices or other important implementations.

As it stands, it’s non-functional, insecure, outdated, and hasn’t been updated on the primary distribution channel in a few years.

Apps serve many purposes, but when property or even lives are on the line, what good are broken tools?

What is the plan for this app at this point in time?

n8fr8 commented 2 years ago

I've definitely been challenged finding a home for it within all of our other work at Guardian Project, and thus making time in my schedule to be an active maintainer. It is a tricky project to keep supporting even with interest from activist and human rights communities.

I'm open to identify you or someone else to be the lead maintainer, and given the authority to make decisions about issues as needed. There may even be some small amount of funding or compensation that could be figured out, if there was overlap with our work on tor (integrate tor-android directly), proofmode (add proofmode library for signing of media evidence) and matrix (replace signal with matrix as secure messaging channel) related work. We also have some new funding related to IPFS that could be integrated here, if someone was interested in thinking about decentralized storage of Haven generated media.

Find me on matrix @n8fr8:matrix.org or nathan@guardianproject.info if anyone wants to talk in realtime about this.

I do still love this app, and find ways to use it now and then.

tlaurion commented 2 years ago

@n8fr8 i would advise in doing a broader/separate issue on state of things outside of a closed issue and promote need of maintainership even through FPF.

As of now this project has not good figure.

fat-tire commented 2 years ago

This issue made me a little depressed, so I figured I'd try to at least try to bring the build back up. Didn't really test it, but wasn't sure what the interest was really. But you end up wtih an apk and the libraries and stuff are all up to latest stable versions. Doesn't mean it works great or anything... YMMV

¯\_(ツ)_/¯

lukeswitz commented 2 years ago

It depresses me you added another Facebook dependency. Different strokes I suppose. It builds anyhow.

fat-tire commented 2 years ago

Uh, it was a facebook dependency for an existing facebook dependency:

-    implementation 'com.facebook.fresco:fresco:2.0.0'
+    implementation 'com.facebook.fresco:fresco:2.6.0'
+    implementation "com.facebook.infer.annotation:infer-annotation:0.18.0"

(MIT-licensed source)

You did know there was a facebook library here already, right? My addition is only used to suppress a bunch of warnings during the build. It still runs without it, but the build is noisier.

fat-tire commented 2 years ago

No problem. It's not necessarily a problem to have dependencies for open source projects if they can be verified/audited just like any other source... Maybe too little too late-- maybe not. No idea. I just figured may as well make it build.