Voyager What are your thoughts on a "secure" end-to-end encrypted app that requires dynamic code loading? My settings say it's less secure, but does that apply with e2e encryption?
Dynamic code loading can be ok when an app is dynamically loading code that is ok. But if an app has the ability to dynamically load code, and somebody exploits a vulnerability in the app, now the app can dynamically load code that is provided by the exploiter. If an app has a strong security focus, the app author can likely re-structure the app so that it doesn't rely on dynamic code loading, or at least should be able to say why that's not possible. But some apps don't have a strong security focus.
This is mostly unrelated to the issue of end-to-end encryption, except perhaps that apps without a strong security focus are less likely to have end-to-end encryption, or to have end-to-end encryption but implement it poorly. So end-to-end encryption is better than not, but it doesn't make dynamic code loading safer.