Aarogya Setu's backend code has been released on government-owned open source repository OpenForge (available here). With this, the source codes of the Android and iOS apps, and of the backend servers have been placed in open domain; only the source code of KaiOS app remains unreleased. Anivar Aravind, a public interest technologist and part of SFLC.in’s advisory board, tweeted, "The demand was not forsome [sic] random backend code snippets. It was for server code, deploy functions and verifiable builds from free and open source repositories. This @NICMeity effort looks like an effort to fool people with some nonfunctional code snippets as 'Backend code'". Aravind has filed a PIL in the Karnataka High Court seeking a permanent injunction against the app and had also asked for the server side code to be open sourced. The government of India had put the source code of the Android client in the public domain via GitHub on May 27. However, NIC-CERT had later said that the Aarogya Setu code on GitHub is "test backend code", not the "production code". While announcing the open sourcing of Android source code, the National Informatics Centre (NIC) had also announced a Bug Bounty Programme; submissions for which were accepted until June 26. Despite receiving 1,451 submissions through the programme, the NIC has not yet declared the winner(s). The iOS source code was released in the public domain on August 10 without any such ceremony. Unlike the Android code, the iOS code was released on OpenForge and had no…
