Does anyone knows QUIK SMS messenger?

Matthai

I just came accross this SMS messenger and it seems interesting: https://github.com/octoshrimpy/quik

Does anyone knows it?

I am currently using default GrapheneOS's app, however it is lacking search function (or am I not able to see it?). That is why I am thinking about alternatives...

geni101

Matthai Used it for a long time now. Never had any problems with it. I like it for its nice GUI and delayed send messages, also for its back up funtion.

Oggyo

Matthai Does anyone knows it?

Yes, it is a fork of QKSMS, which I used in the past.
I liked the feature to auto-delete messages older than xx days. And with a shortened xx value you don't need a search anymore :-P

Matthai

What about security?

Is it OK to use it instead of stock Graphene's SMS app?

Oggyo

Matthai

I guess that applies to all 3rd-party apps you install on your phone 🙂
It's a FOSS, so the code can be analyzed, downloaded, and the app self-bult, etc.

geni101

Matthai Personally I would not worry about the security of the app but more the security within sms

Matthai

Well, yes. I understand SMS is completely unsecure. But - it can contain some exploit causing buffer overflow or something, which was actually very common vector of attack for mobile spyware in the past.

My question is more - did someone actually analysed QUIK or have some knowledge about it's security?

geni101

Matthai So that was QKSMS lasts release 3.9.4 on 04/24/21 they analysed on the 04/07/2024.
But, and yes QUIK is a fork, however a different developer so I think IMO that the CVE-2024-3430 analyse does not make sence to QUIK which are now on 4.1.1
However I could be wrong.
Maybe ask in there chat https://matrix.to/#/#quik-sms:matrix.org if you still are unsure of its security.

Matthai

For QKSMS I found this (however QUIK is a continuation of now abandoned QKSMS): https://nvd.nist.gov/vuln/detail/CVE-2024-3430