PSA: we've addressed this rumor repeatedly. Tldr there is no evidence of a vulnerability in Signal, and our code is open source. No report of this issue was ever made to security@signal.org, and no CVE was filed. There is no truth to the assertion that a phone number enables

→ View original post on X — @mer__edith,