(peabee.substack.com)

1192 points gniting | 1 comments | 29 Mar 25 21:26 UTC | HN request time: 0.227s | source

Show context

captn3m0 ◴[30 Mar 25 02:37 UTC] No.43520750[source]▶

>>43518866 (OP) #

The ACTION_MAIN loophole has been written about before: https://commonsware.com/blog/2020/04/05/android-r-package-vi...

Google refuses to patch this. I wonder what would happen if you submit it to the Android VDP as a permission bypass.

There’s also this SO question by the author about the bypass: https://stackoverflow.com/q/79527331

replies(5): >>43520922 #>>43521144 #>>43521275 #>>43522877 #>>43525081 #

izacus ◴[30 Mar 25 03:48 UTC] No.43521144[source]▶

>>43520750 #

What do you mean with "refused to patch this"? Google will reject any app publishing attempt that asks for that filter and isn't a launcher on Play store.

replies(3): >>43521267 #>>43521347 #>>43523028 #

1. Mindwipe ◴[30 Mar 25 10:33 UTC] No.43523028[source]▶

>>43521144 #

The HSBC bank app uses this and is in the Play Store.

↑

Everyone knows all the apps on your phone