[snazz]

Given that I have to re-sign sideloaded open-source iPhone apps every 7 days for them to work, I would imagine that Apple could just revoke the app’s signing certificate and it wouldn’t launch. I don’t know how Android works in this regard.

[ajayyy]

Android apps, even on the Google Play store, are signed by the developer (not Google). Even with the new "app bundles", where you can give Google your signing key so they can make downloaded apps only include the code needed on that device (languages, screen size, etc.), you still have access to that key as far as I know and can sign apps with it.