Android Secure Coding Rules 與範例

Android Secure Coding Rules 與範例

 

 

Checker code Description Default severity Enabled by default?
ANDROID.LIFECYCLE.SV.FRAGMENTINJ Unvalidated fragment class name 1 true
ANDROID.LIFECYCLE.SV.GETEXTRA Unvalidated external data 3 true
ANDROID.NPE Dereference of a null value in an Android application 4 true
ANDROID.RLK.MEDIAPLAYER Media player is not released on exit 1 true
ANDROID.RLK.MEDIARECORDER Media recorder is not released on exit 1 true
ANDROID.RLK.SQLCON Sql connection is not closed on exit 1 true
ANDROID.RLK.SQLOBJ Sql object is not closed on exit 1 true
ANDROID.UF.BITMAP Usage of recycled bitmap 2 true
ANDROID.UF.CAMERA Usage of released camera 2 true
ANDROID.UF.MEDIAPLAYER Usage of released media player 2 true
ANDROID.UF.MEDIARECORDER Usage of released media recorder 2 true

Reference

 

www.jssec.org/dl/android_securecoding_en.pdf

Leave a Reply

Your email address will not be published.