In an effort to cut back the variety of vulnerabilities in Android apps, Google is introducing the Android Software Safety Information Base (AAKB).
The AAKB features a database of frequent code points, full with examples on methods to remediate them and explanations on methods to implement particular code patterns.
Google already does scan Android apps for vulnerabilities, and informs builders to allow them to remediate the problem or it removes the app if the problem isn’t fastened.
“We all know that it isn’t all the time sufficient to simply let you know a couple of vulnerability in your app; it’s essential to know methods to repair the problem and methods to forestall related points from cropping up sooner or later,” the Android crew wrote in a weblog publish.
In keeping with Google, the AAKB is aligned with the OWASP Cellular Software Safety Verification Commonplace (MASVS). Additionally it is vetted by technical specialists from totally different organizations, together with Microsoft.
“This helps make sure the content material shouldn’t be biased to at least one occasion and represents state-of-the-art requirements. This additionally supplies an academic place so that you can proactively remediate safety dangers in your purposes utilizing industry-wide requirements, with direct entry to data from subject-matter specialists,” the Android crew wrote.
The repository might be accessed by the AAKB homepage or in Android Studio, the place remediation steering now exhibits up in lint checks, with a hyperlink to the related AAKB article.
You may additionally like…
The evolution and way forward for AI-driven testing: Making certain high quality and addressing bias
