Daniel Micay
Daniel Micay
Blocklists really shouldn't involve code from files. Perhaps they implemented it as some kind of plugin that's loaded as code but that's a genuine security weakness, especially if it isn't...
There are zero false positives for either the memory or storage dynamic code loading blocking. If it blocks and shows the notice, it blocked doing it. Many cases of apps...
For the storage blocking, the notification shows the file path it blocked from executing, mapping as executable or loading Java/Kotlin classes from which is usually enough to figure out what's...
> Since this is the only solution for running binaries on Android, do you consider this approach to be valid use case that should not trigger a DCL warning? It's...
No, it's not DCL as long as the OS package manager is extracting them which is marked as `apk_data_file` similar to the APK rather than `app_data_file` which the app can...
Android API 29+ disallows directly executing stuff in app_data_file itself but still allows mapping it as executable, which we don't allow, so that's why I was mentioned that above. It...
The feature doesn't have false positives. It will show the file path in the notification for DCL from storage. No one has provided the full error message they're receiving here.
The app is trying to execute data labelled as `app_data_file`. A library extracted by the package manager is not `app_data_file` but rather `apk_data_file`. You'll need to determine what it's trying...
This one has a better log so doing it the other way around.
Yes, it's already available when the keyboard app supports it. You can use a different keyboard.