Google and Apple are introducing app signing key escrow in their appstores to allow seamless “optimizing” of app code and delivery. Besides taking more control over the app ecosystem it makes targeted attacks for delivering crippled E2E apps a breeze and with no trusted verification systems, the victims will never know.
https://lists.mayfirst.org/pipermail/guardian-dev/2017-May/005265.html