I've been wondering, since skins being so accessible in the community and easy to install and change the UI, does it provide a vulnerability to the system that could be exploited? Being a part of the 'Official Android Forums Foil Hat Wearing Society', this is something I need to know. (I realize I'm making a joke of this, but I really am serious and looking for an in depth answer).
Don't get me wrong here, I absolutely LOVE how easy and accessible it seems to be to re-skin Sense 3. It really is awesome to have these great customization options available through .apk without rooting. I also like that we are getting different skins and ideas coming from different minds than just HTC's. It is amazing, and how phones should be - customizable.
The other week I installed
CypiS 'Amazing Sense' Sense 3.0 Skin (for the Sensation but it works on any Sense 3 device). However, it troubled me that there was not a way to uninstall the skin. I looked everywhere I could for a removal option but did not find one and eventually I just hard reset to clear 'Amazing Sense' from the system.
Is there any inherent security risks to adding third party skins to the system? Applications on the market have a security clearance list that shows any special permissions required so you more or less know what you are getting yourself into, and they pass through some semblance of an approval process by Google. Although, this does not mean everything they offer is safe.
I almost wish that HTC would work with the community's best 'Skinners' and gather up the best skins to make them available through official channels like the HTC Hub (I was even apprehensive with signing up for the Hub, but I really wanted more skins - although the ones so far are pretty blah). I would be much more comfortable knowing that it has gone through an approval process of some sort and came from HTC Servers rather than multi-upload.
I know I'm being overly cautious, I don't need anyone to tell me that. In a way I'm playing Devil's advocate here. And yeah yeah yeah I know enough to heed conventional wisdoms like only get apk's from trusted sources and trust people that have experience and a good track record in the communities. I'm not looking for the run of the mill answers. Hopefully someone can help shed some real light on this?