Comment by stefan_

The basic Signal vulnerability even if the protocol is perfectly sound is that they can push effectively silent automatic app updates to do whatever. Presumably they didn't want to signup for this but that's how app distribution works nowadays, and it's certainly not fit for classified information.