mirror of
https://github.com/f-droid/fdroidserver.git
synced 2026-03-18 23:17:15 -04:00
98297278bd
This scans all APKs for old versions of OpenSSL libraries that are known to be vulnerable to issues, or fully unsupported. This really should be implemented as a per-APK AntiFeature, so that it can apply to any version that is vulnerable. Since AntiFeatures are currently only per-App, this instead sets the AntiFeature only if the latest APK is vulnerable. Google also enforces this: https://support.google.com/faqs/answer/6376725?hl=en apk['antiFeatures'] has the first letter small, since all build fields start with a lowercase letter. app.AntiFeatures has the first uppercase since all App fields are that way.
32 KiB
32 KiB