The release tags cannot be changed or removed from the commit they were applied to. You cannot reuse a tag.

Immutable releases include protection against repository resurrection attacks. Even if you delete a repository and create a new one with the same name, you cannot reuse tags that were associated with immutable releases in the original repository.

This one for me too! I’ve been very happy.

I try to minimize use of browser extensions, but i have the phone & desktop application. Nextcloud/whatever you run for syncing. I also back up those files through rsync to encrypted volume in a cloud provider (so double encrypted), so that if the worst should happen, I can still access the last version.

It’s worth noting that you can manage OTP through it. When you add to your phone’s OTP manager, you can also add it to Keepass, so you wont be up shit creek if your phone dies. Personally I would make a separate volume for your OTP, so you retain dual verification, even if someone should gain access to one of the two.

You misunderstand; regardless of what is shown to other users, the folks running the service know your number, and that you desire using encrypted chat.

I’d say the two are different but related.

Seems OP is discussing the loss of anonymity, but the below ARE privacy concerns:

• Someone obtaining my number who does not absolutely need it
• Someone knowing who I am, and knowing I do or do not use a service

Granted that it is difficult to completely obfuscate some aspects of your identity.

2FA is important, but if you use your phone number for anything, you have no idea how long they retain it, how they directly use it, if they sell it, etc. A real phone number can be mapped back to you trivially.

It should be standard to offer TOTP codes that can be used via an authenticator app, hardware key, etc. Aome places do, many do not.

But at the end of the day, they typically don’t ask for your phone number because they want to give you security, but rather as a proxy to ensure you have a unique identity. Most people will have only one phone number, and it will be more difficult / costly to get additional ones than burner emails, etc.

There’s also logseq, which I would pit into this category, and is open source

https://github.com/logseq/logseq