Guys,
I know now that this app isnt opensource anymore, but I would like you guys would shed some light
To be honest, it doesn't make that much of a difference. Open sourced or not, you would have been using the precompiled binary. Note, I'm NOT saying open sourced and closed sourced projects are the same, I'm pointing out the fact.
Can I be safe, a kind of cold storage if I get a android with coinomi offline, backup seed n private keys n reset phone n starting using it again?
Any way to check if those private public keys coinomi are generating are legit? any way to be sure that they don't hold those, can be considered offline?
thanks,
Not really to both. Android isn't really designed for cold storage with the difficulty of spending the keys offline in the first place. You can in theory but that would be insecure as you have highlighted in the first place. Mycelium would be the better choice.
You can use wireshark to tap the internet connections to ensure that no unauthorised connections is being made. There is no protection against coinomi generating weak addresses etc.