[ge0rg]

Speaking as a developer who's app is both on Google Play and on f-droid, I somehow share your feeling about f-droid being "insecure"(x), but consider all of the other points very thin.

Crash reports and statistics are great, except if you explicitly want to NOT spy on your users.

Auto-updates are ok, but forced auto-updates take the user's autonomy away, and are only one step short of forced remote uninstalls (which are already documented with Google Play, so far only for malware).

A proper build system is great indeed, but has nothing to do with the distribution medium.

(x) f-droid security: by having f-droid build all the apps from source by default, and signing them with their own keys, two problems appear:

a) you can not switch easily between f-droid builds and maintainer builds

b) you as the user need to trust both the author and f-droid to not be evil, instead of just the author.