Isn't a better solution here to build an app that signs unsigned apks with the end user's self provided signature ?