Conversation

Replying to
github.com/webadb/webadb. has the start of a fastboot protocol implementation. It can likely already be used to issue the lock and unlock commands without much work. Project involves figuring out how to do the rest of the flashing commands and putting it together as an installer.
1
10
No real need for existing experience with Android development. It's quite standalone. Don't need to already have a usable phone for working on this since we can buy one as part of the funding. The result will be open source and usable with other devices and operating systems.
1
13
This will be turned into an easy to use graphical installer for GrapheneOS not requiring software beyond a browser and our site. CLI instructions will still be recommended for technical users on an OS with proper fastboot and signify packages. Otherwise, WebUSB makes more sense.
2
19
Trusting an installer downloaded from the site without verifying it with our offline signing key for the factory images is equivalent to trusting the site, but with a lot more that can go wrong. Could just release an archive with the web installer that's signed instead of that.
2
We'd rather have people verify with signify or another utility like certutil on Windows and a specific public key they can obtain from multiple locations. Can see that's how we provide the signify public key for the factory images in our CLI installation guide. Multiple sources.
2