Google has initiated early preparatory work on an "Install without verifying" flow for Android app sideloading. Google describes this process as "high friction." Google previously announced changes in August 2025 requiring a developer verification program for app installation, even for manually sideloaded apps. In November 2025, Google confirmed an installation option for "experienced users" that would bypass developer verification.
Implementation Details
Recent observations within the Google Play Store app by Android Authority revealed internal strings related to this new flow. These strings, which had surfaced a few months prior to Google's August announcement, include a warning: "If you install without verifying, keep in mind apps from unverified developers may put your device and data at risk." Other strings suggest that an internet connection may be required for verification processes.
Matthew Forsythe, Chief Product Explainer at Google Play, provided clarification via a tweet. Forsythe stated that Google's changes to Android sideloading are not a "restriction" but an "Accountability Layer." He noted the new sideloading flow is designed with "high friction" to ensure users comprehend the risks associated with installing unverified applications.
Purpose and Security Measures
In November, Google characterized the new sideloading flow as providing "clear warnings" while maintaining user choice. The objective is to prevent users from being coerced or tricked into bypassing safety checks. Google stated, "We are designing this flow specifically to resist coercion, ensuring that users aren’t tricked into bypassing these safety checks while under pressure from a scammer. It will also include clear warnings to ensure users fully understand the risks involved, but ultimately, it puts the choice in their hands."
Google has been addressing scams that leverage sideloading in various countries. The implementation of additional friction into the installation process is intended as a measure to mitigate problems arising when users are manipulated into bypassing existing sideloading security protocols. The company aims to implement multiple safeguards against sideloading-related scams.