All notable changes to this project will be documented in this file.
The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.
- Android SDK version: 11.1.1
- iOS SDK version: 6.6.0
- False positives for hook detection
- Android SDK version: 11.1.0
- iOS SDK version: 6.6.0
- Improved error messages when validation of the freeRASP configuration fails
- Added the auditing of the internal execution for the future check optimization and overall security improvements.
- Fixed native crashes (SEGFAULT errors) in
ifpip
method - Fixed collision for command line tools (like ping) invoked without absolute path
- ❗️Breaking: Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable
- Updated OpenSSL to version 3.0.14
- Updated CURL to version 8.8.0
- Refactored fetching the list of installed applications for root and hook detection.
- Dopamine jailbreak detection.
- Enhanced and accelerated the data collection logic
- Updated OpenSSL to version 3.0.14
- Updated CURL to version 8.8.0
- CHANGELOG now adheres to the Keep a Changelog format.
- ⚡ Added new threat
systemVPN
for VPN detection - 📄 Documentation updates
- ⚡ Added new threat
devMode
for Developer mode detection - ⚡ Fixed proguard warning in specific versions of RN
- ⚡ Fixed issue with Arabic alphabet in logs caused by the device’s default system locale
- ✔️ Increased the version of the GMS dependency
- ✔️ Updated CA bundle
- ⚡ Fixed issue with Arabic alphabet in logs caused by the device’s default system locale
- ⚡ Passcode check is now periodical
- ✔️ Updated CA bundle
- ⚡ Updated freeRASP SDK artifact hosting ensuring better stability and availibility
- 📄 Documentation updates
- ⚡ Shortened duration of threat evaluation
- ⚡ Fixed a native crash bug during one of the native root checks (detected after NDK upgrade)
- ⚡ Improved appIntegrity check and its logging
- ⚡ Updated
CURL
to8.5.0
andOpenSSL
to1.1.1w
- ❗ Added Privacy Manifest
- ❗ Added codesigning for the SDK, it is signed by:
- Team ID:
ASQC376HCN
- Team Name:
AHEAD iTec, s.r.o.
- Team ID:
- ⚡ Improved obfuscation of Swift and C strings
- ⚡ Fixed memory leak (freeRASP iOS issue #13)
- ⚡ Updated
CURL
to8.5.0
andOpenSSL
to1.1.1w
- ⚡ Fixed bug that prevented firing callbacks in specific situations
- ⚡ Fixed bug that caused app being killed in specific situations (#42)
- ⚡ Improved message passing between native iOS/Android and Capacitor
- ✔️ Restricted message passing to valid callbacks only. If an invalid callback is received, the SDK will kill the app
- ⚡ Improved reaction obfuscation
- 📄 Documentation updates and improvements
- ⚡ Fixed ProviderException which could be occassionally triggered
- ❗ Raised supported Xcode version to 14.3.1
- ⚡ Improved SDK obfuscation
- 📄 Documentation updates and improvements
- ✔️ updated CA bundle for logging pinning
- ✔️ added error logging of network issues within the logging process
- ✔️ added retry politics for logging
- ⚡ fixed issue with DeadObjectException on Android 5 and 6 caused by excessive PackageManager.queryIntentActivities() usage
- ⚡ improved root detection capabilities
- 🎉 Initial release of freeRASP for Capacitor
- ℹ️ Based on Android freeRASP SDK 8.2.0 and iOS freeRASP SDK 5.1.0