https://play.google.com/about/privacy-security-deception/malicious-behavior/

Apps or SDKs that download executable code, such as dex files or native code, from a source other than Google Play.

To remain in compliance with the guidelines, Termux would need to put each package into an apk installed from the Play Store instead of doing package management internally.

I thought you might appreciate a heads up about this.