🎤What's New and Changelog

Latest version 17.0.0

Breaking Change

• ❗️Breaking: Added killOnBypass method to the TalsecConfig.Builder that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker Issue 65

• ❗️Breaking: Added onTimeSpoofingDetected() callback to ThreatDetected interface

  • We are introducing a new capability, detecting whether the device time has been tampered with

• ❗️Breaking: Added onLocationSpoofing() callback

  • We are introducing a new capability, detecting whether the location is being spoofed on the device.

• ❗️Breaking: Added onUnsecureWifi() callback to ThreatDetected interface

• ❗️Breaking: Changed onMalwareDetected() method parameter packageInfo to non-nullable

• ❗️Breaking: Updated dispatchKeyEvent() parameter nullability from @Nullable to @NonNull

• ❗️Breaking: Changed parameter type of Activity instead of Context in the blockScreenCapture() method

• ❗️Breaking: Removed deprecated functionality Pbkdf2Native and both related native libraries (libpbkdf2_native.so and libpolarssl.so)

Added

• Added ScreenProtector feature wrapper object that helps with registration/unregistration of screen protection features

• A new constructor parameter of type RaspExecutionState in class ThreatListenerrepresenting changes in state in our library. RaspExecutionState contains onAllChecksFinished() method, which is triggered after all checks are completed.

• Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission

• New option to start Talsec, Talsec.start() takes new parameter TalsecMode that determines the dispatcher thread of initialization and sync checks

• Capability to check if another app has an option REQUEST_INSTALL_PACKAGES enabled in the system settings to malware detection

Fixed

• ANR issue caused by registerScreenCaptureCallback() method on the main thread

• NullPointerException when checking key alias in Keystore on Android 7

• JaCoCo issue causing MethodTooLargeException during instrumentation

• DeadApplicationException when calling Settings.Global.getInt or Settings.Secure.getInt on invalid context

• AndroidKeyStore crashes causing java.util.concurrent.TimeoutException when calling finalize() method on Cipher (GC issues)

Changed

• Shortened the value of threat detection interval

• Refactoring of internal architecture of SDK that newly uses Coroutines to manage threading

• Update of internal dependencies and security libraries

Version 16.0.1

Breaking Change, new feature

• ❗️Added onMultiInstanceDetected() callback - detection whether the application is installed/running in various multi-instancing environments (e.g. Parallel Space).

Improvement

• Added support for 16 KB memory page sizes.

• The ADB service running as "root" is a signal for root detection.

• Improved emulator detection.

• Internal security improvements.

Fixed

• Removed malware report duplicates.

Version 15.1.0

Improvement

• Added new root detection checks.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

• Added externalId to put an integrator-specified custom identifier into the logs. This feature will be presented later.

Fixed

• Resolved SecurityException caused by getNetworkCapabilities() - Android 11 specific bug (GH Android issue #56).

Version 15.0.0

Changed

• Compile API increased to 35, dependencies updated

• Internal library obfuscation reworked

• Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

Fixed

• ANR issues bug-fixing

Version 14.0.1

Breaking Change, new feature

• ❗️Added onScreenshotDetected() - detection of screenshots, refer to the Android freeRASP integration documentation.

• ❗️Added onScreenRecordingDetected() - detection of screen recording, refer to the Android freeRASP integration documentation.

Improvement

• Added blockScreenCapture(Activity activity, boolean enable) for FLAG_SECURE control, an active protection against screen capturing.

• isScreenCaptureBlocked() - to receive whether the screen capture is blocked

• Rate limiting for both screenshot and screenRecording incidents

• Improved root detection capabilities

Bug Fix

• Updated proguard rules to fix warnings from okhttp dependency.

Version 13.2.0

Improvement

• Added request integrity information to data collection headers.

• Enhanced and accelerated the data collection logic.

Version 13.0.0

New features

• BREAKING CHANGE: Added onADBEnabledDetected detection feature, which allows you to detect USB debugging option enabled in the developer settings on the device. App needs to implement this new callback.

Version 12.0.0

Improvement

• Refactored Magisk checks in the root detection

• Internal refactoring of Malware detection feature

Bug Fix

• Resolved IllegalArgumentException caused by unregistering not registered receiver in TalsecMonitoringReceiver

Version 11.1.3

Bug Fix

• Reported ANR issues present on some devices were resolved (GH issue #138).

• Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter #140).

• Reported crashes caused by the UnsupportedOperationException were resolved.

Version 11.1.1

Bug Fix

• False positives in Hook detection (runtimeManipulation).

Version 11.1.0

New Feature

• Added onMalwareDetected to ThreatListener.ThreatDetected interface, this is a breaking change and the onMalwareDetected has to be implemented by the integrating application.

  • Important Information

    • Further details for this feature will be provided shortly with the new repositories.

    • For now, do not react to the callback, you can implement it simply by just using println().

• Added the auditing of the internal execution for the future check optimization and overall security improvements.

Improvement

• Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable.

• Updated CURL to 8.8.0 and OpenSSL to 3.0.14 (Github issue #114).

• Refactored fetching the list of installed applications for root and hook detection.

Bug Fix

• Fixed native crashes (SEGFAULT errors) in ifpip method.

• Fixed collision for command line tools (like ping) invoked without absolute path (Github issue #41).

Version 9.6.0

New Feature

• Two new threat callbacks, onDeveloperModeDetected and onSystemVPNDetected, have been added for detecting Developer mode and System VPN.

Improvement

• Updated GMS dependency to a newer version for improved performance and compatibility.

• Updated CA bundle to enhance security for secure connections.

Bug Fix

• Resolved a problem with displaying the Arabic alphabet in logs caused by the device’s default system locale.

Version 9.1.0

Improvement

• Updated freeRASP SDK artifact hosting ensuring better stability and availability.

Version 9.0.2

Improvement

• Shortened duration of threat evaluation.

• Improved appIntegrity check and its logging.

• Updated CURL to 8.5.0 and OpenSSL to 1.1.1w.

Bug Fix

• Fixed a native crash bug during one of the native root checks (detected after NDK upgrade).

Version 9.0.0

Improvement

• Increased the compileSdk and targetSdk in the demo application.

• Updated dependencies in the demo application.

Bug Fix

• Fixed issue with ProviderException (#26).

Curious about more in-depth changes for Android? Head over to our GitHub Changelog for the complete history of updates!

Latest version 6.12.1

Improvement

• Added palera1n jailbreak detection

• Improved Dopamine jailbreak detection

Fixed

• Resolved memory-related stability issues.

Version 6.11.0

New Feature

• Screen capture protection obscuring app content in screenshots and screen recordings preventing unauthorized content capture. Refer to the iOS freeRASP integration documentation.

Improvement

• Added externalId to put an integrator-specified custom identifier into the logs. This feature will be presented later.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

Bug Fix

• Resolved an issue that prevented Xcode tests from running correctly.

• Resolved an issue with the screen recording detection.

Version 6.9.0

Improvement

• Improvement of the obfuscation of the SDK

Changed

• Deep signing of the OpenSSL binaries

Version 6.8.0

New feature

• Enhanced security with our new Screen Capture Threat Detection, now capable of identifying screen recording, AirPlay mirroring, and screenshots to guard against unauthorized viewing. Check out the new screenshot and screenRecording callbacks.

Version 6.6.3

Maintenance

• Updated SDK code signing; it will now be signed with:

  • Team ID: PBDDS45LQS

  • Team Name: Lynx SFT s.r.o.

Version 6.6.2

New feature

• Added Serotonin jailbreak detection.

Version 6.6.1

Improvement

• Renewed the signing certificate.

Version 6.6.0

New feature

• Dopamine jailbreak detection.

Version 6.5.3

Improvement

• Updated OpenSSL to version 3.0.14 and CURL to version 8.8.0. (Github issue #114)

Version 6.5.0

New Feature

• Added request integrity information to data collection.

• Significantly improved the response time from data collection service.

Version 6.4.0

New Feature

• Added new threat callback systemVPN for System VPN detection.

Improvement

• Passcode check is now performed periodically.

• Updated the CA bundle to enhance security for secure connections.

Bug Fix

• Resolved a problem with displaying the Arabic alphabet in logs caused by the device’s default system locale.

Version 6.1.2

New Feature

• Added Privacy Manifest.

• Added codesigning for the SDK, it is signed by:

  • Team ID: ASQC376HCN,

  • Team Name: AHEAD iTec, s.r.o..

Improvement

• Updated CURL to 8.5.0 and OpenSSL to 1.1.1w.

• Improved obfuscation of Swift and C strings.

Bug Fix

• Fixed memory leak (#13).

Curious about more in-depth changes for iOS? Head over to our GitHub Changelog for the complete history of updates!

Latest version: 7.3.0

Added

• Added killOnBypass to TalsecConfig that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker (Android only) (Issue 65)

• Added onTimeSpoofing callback to ThreatCallback for handling Threat.timeSpoofing threat (Android only)

  • We are introducing a new capability, detecting whether the device time has been tampered with

• Added onLocationSpoofing callback to ThreatCallback for handling Threat.locationSpoofing threat (Android only)

  • We are introducing a new capability, detecting whether the location is being spoofed on the device.

• Added onUnsecureWifi callback to ThreatCallback for handling Threat.unsecureWifi threat (Android only)

  • We are introducing a new capability, detecting whether the device is connected to an unsecured Wi-Fi network.

• Added onAllChecksDone callback to new RaspExecutionStateCallback

  • We are introducing a new callback that notifies when all security checks have been completed.

Removed

• Removed deprecated functionality Pbkdf2Native and both related native libraries (libpbkdf2_native.so and libpolarssl.so)

Changed

• Updated internal dependencies

Version 7.2.2

Fixed

• [Android] Fixed an issue with crashing screen protector

Version 7.2.1

Fixed

• [iOS] Fixed an issue with native framework

Version: 7.2.0

New Feature

• Added interface for multi-instance detection

Improvement

• [iOS] Added palera1n jailbreak detection

• [iOS] Improved Dopamine jailbreak detection

• [Android] Improved emulator detection

• [Android] Added support for 16 KB pages

Fixed

• [iOS] Resolved memory-related stability issues

• [Android] Removed malware report duplicates

Version: 7.1.0

New feature

• Added interface for screenshot / screen recording blocking on iOS.

Improvements

• Added interface for external ID storage.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

• [Android] New root detection checks added.

Fixed

• Issue that caused compilation errors due to unknown references.

• [iOS] Resolved an issue with the screen recording detection.

• [iOS] Resolved an issue that prevented Xcode tests from running correctly.

Version 7.0.0

Added

• fvm support for Flutter version management

Changed

• Updated versions for example app

• [Android] Breaking: Raised Kotlin version to 2.1.0

• [Android] Compile API increased to 35, dependencies updated

• [Android] Internal library obfuscation reworked

• [Android] Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

• [iOS] Improvement of the obfuscation of the SDK

• [iOS] Deep signing of the OpenSSL binaries

Fixed

• [Android] ANR issues bug-fixing

Version 6.12.0

New feature

• Added screenshot - detection of screenshots, refer to the freeRASP integration documentation.

• Added screenRecording - detection of screen recording, refer to the freeRASP integration documentation.

• Added blockScreenCapture for FLAG_SECURE control, an active protection against screen capturing.

• Added isScreenCaptureBlocked - to receive whether the screen capture is blocked

Changed

• [Android] Raised Android CompileSDK level to 35

• [Android] Monitoring is now disabled by default

Improvement

• [Android] Improved root detection

Bug Fix

• [Android] Proguard rules to address warnings from okhttp dependency

Version 6.11.0

Improvement

• [Android] Added request integrity information to data collection headers.

• [Android] Enhanced and accelerated the data collection logic.

Version 6.10.0

Improvement

• App icons for detected malware are not fetched automatically anymore, which reduces computation required to retrieve malware data. From now on, app icons have to be retrieved using the getAppIcon method

• [Android] Malware data is now parsed on background thread to improve responsiveness.

Version 6.9.0

New features

• [Android] onADBEnabled callback, allowing you to detect USB debugging option enabled in the developer settings on the device.

Version 6.8.0

New features and improvements

• [Android] Malware detection as a new callback for enhanced app security.

• [Android] Internal refactoring of Malware detection feature.

• [Android] Refactoring Magisk checks in the root detection.

• [iOS] Enhanced security with Serotonin Jailbreak Detection to identify compromised devices.

Maintenance

• [iOS] Updated SDK code signing; it will now be signed with:

  • Team ID: PBDDS45LQS

  • Team Name: Lynx SFT s.r.o.

Bug Fix

• [Android] Resolved IllegalArgumentException caused by unregistering not registered receiver in TalsecMonitoringReceiver

Version 6.7.3

Improvement

• [iOS] Renewed the signing certificate.

Version 6.7.2

Bug Fix

• [Android] Reported ANR issues present on some devices were resolved (GH Flutter issue #138).

• [Android] Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter issue #140).

• [Android] Reported crashes caused by the UnsupportedOperationException were resolved.

Version 6.7.1

Bug Fix

• [Android] False positives for hook detection.

Version 6.7.0

New Feature

• [Android] Added the auditing of the internal execution for the future check optimization and overall security improvements.

• [iOS] Dopamine jailbreak detection.

Improvement

• Migration to declarative Gradle plugin.

• Updated CURL to 8.8.0 and OpenSSL to 3.0.14 (Github issue #114).

• [Android] TalsecConfig creation was migrated to a Builder pattern.

• [Android] Refactored fetching the list of installed applications for root and hook detection.

• [iOS] Enhanced and accelerated the data collection logic.

Bug Fix

• [Android] Native crashes (SEGFAULT) in ifpip method.

• [Android] Fixed collision for command line tools (like ping) invoked without absolute path (Github issue #41).

Version 6.6.0

New Feature

• Added new threat Threat.systemVPN for VPN detection.

• Added new callback onSystemVPN in ThreatCallback for handling Threat.systemVPN threat.

• [Android] Added a new threat detection feature, Threat.devMode, to identify Developer mode.

• [Android] Added a new callback onDevMode in ThreatCallback for handling Threat.devMode threat.

Improvement

• Increased minimal Dart SDK version to 2.18.0 and minimal Flutter version to 3.3.0

• Updated the CA bundle to enhance security for secure connections.

• [Android] Increased the version of the GMS dependency

• [iOS] Passcode check is now performed periodically.

Bug Fix

• Resolved a problem in logging caused by the device’s default system locale

Version 6.5.1

Improvement

• [Android] New Talsec SDK artifact hosting - better stability and availibility.

Version 6.5.0

New Feature

• [iOS] Added Privacy Manifest.

• [iOS] Added codesigning for the SDK, it is signed by:

  • Team ID: ASQC376HCN,

  • Team Name: AHEAD iTec, s.r.o..

Improvement

• Updated CURL to 8.5.0 and OpenSSL to 1.1.1w.

• [Android] Improved appIntegrity check and its logging.

• [iOS] Improved obfuscation of Swift and C strings.

Bug Fix

• [Android] Fixed issue with disappearing threats when the app is quickly put into the background and then back to the foreground (resolves issue #91).

• [Android] Fixed a native crash bug during one of the native root checks (detected after NDK upgrade).

Version 6.4.0

Improvement

• Improved reaction obfuscation.

• [iOS] Improved obfuscation of the iOS SDK.

• [iOS] Raised supported Xcode version to 14.3.1 .

Bug Fix

• [Android] Fixed ProviderException.

• Fixed typo in namespace which caused incompatibility with AGP 8.0 .

Curious about more in-depth changes for Flutter? Head over to our GitHub Changelog for the complete history of updates!

Latest Version: 4.2.0

New Feature

• Added interface for multi-instance detection

Improvement

• [iOS] Added palera1n jailbreak detection

• [iOS] Improved Dopamine jailbreak detection

• [Android] Improved emulator detection

• [Android] Added support for 16 KB pages

Fixed

• [iOS] Resolved memory-related stability issues

• [Android] Removed malware report duplicates

Version: 4.1.0

New feature

• Added interface for screenshot / screen recording blocking on iOS.

Improvements

• Added interface for external ID storage.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

• [Android] New root detection checks added.

Fixed

• [iOS] Resolved an issue with the screen recording detection.

• [iOS] Resolved an issue that prevented Xcode tests from running correctly.

Version 4.0.0

Changed

• Android SDK requires kotlin_version >= 2.0.0

• Set Java version to 17

• [Android] Compile API increased to 35, dependencies updated

• [Android] Internal library obfuscation reworked

• [Android] Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

• [iOS] Improvement of the obfuscation of the SDK

• [iOS] Deep signing of the OpenSSL binaries

Fixed

• [Android] ANR issues bug-fixing

Version 3.14.0

New feature

• Added screenshot - detection of screenshots, refer to the freeRASP integration documentation.

• Added screenRecording - detection of screen recording, refer to the freeRASP integration documentation.

• Added blockScreenCapture for FLAG_SECURE control, an active protection against screen capturing.

• Added isScreenCaptureBlocked - to receive whether the screen capture is blocked

Changed

• [Android] Raised Android compileSDK level to 35

Improvement

• [Android] Improved root detection

Fixed

• Compatibility issues with RN New Architecture

• [Android] Added proguard rules for malware data serialization in release mode on Android

• [Android] Proguard rules to address warnings from okhttp dependency

Version 3.13.0

Improvement

• [Android] Added request integrity information to data collection headers.

• [Android] Enhanced and accelerated the data collection logic.

Version 3.12.0

Improvement

• App icons for detected malware are not fetched automatically anymore, which reduces computation required to retrieve malware data. From now on, app icons have to be retrieved using the getAppIcon method.

• Parsing of malware data is now async.

• [Android] Malware data is now parsed on background thread to improve responsiveness.

Version 3.11.0

New features

• [Android] adbEnabled callback, allowing you to detect USB debugging option enabled in the developer settings on the device.

Version 3.10.0

New features and improvements

• Added configuration fields for malware detection.

• [Android] Malware detection as a new callback for enhanced app security.

• [Android] Refactoring Magisk checks in the root detection.

• [iOS] Enhanced security with Serotonin Jailbreak Detection to identify compromised devices.

Maintenance

• [iOS] Updated SDK code signing; it will now be signed with:

  • Team ID: PBDDS45LQS

  • Team Name: Lynx SFT s.r.o.

Version 3.9.3

Improvement

• [iOS] Renewed the signing certificate.

Version 3.9.2

Bug Fix

• [Android] Reported ANR issues present on some devices were resolved (GH Flutter issue #138).

• [Android] Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter issue #140).

• [Android] Reported crashes caused by the UnsupportedOperationException were resolved.

Version 3.9.1

Bug Fix

• [Android] False positives for hook detection.

Version 3.9.0

New Feature

• [Android] Added the auditing of the internal execution for the future check optimization and overall security improvements.

• [iOS] Dopamine jailbreak detection.

Improvement

• Improved error messages when validation of the freeRASP configuration fails.

• Updated CURL to 8.8.0 and OpenSSL to 3.0.14 (Github issue #114).

• [Android] Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable.

• [Android] Refactored fetching the list of installed applications for root and hook detection.

Bug Fix

• Fixed incorrect path to types in package.json.

• [Android] Fixed native crashes (SEGFAULT errors) in ifpip method.

• [Android] Fixed collision for command line tools (like ping) invoked without absolute path (Github issue #41).

Version 3.8.2

Improvement

• Updated proguard rules to resolve build issues in RN 0.75.x.

Version 3.8.0

New Feature

• Added a new threat systemVPN for VPN detection.

• [Android] Added a new threat devMode for Developer mode detection.

Improvement

• Updated the CA bundle to enhance security for secure connections.

• [Android] Updated the GMS dependency to a newer version for improved performance and compatibility.

• [iOS] Enhanced and accelerated the data collection logic.

• [iOS] Passcode check is now performed periodically.

Bug Fix

• Resolved a problem with displaying the Arabic alphabet in logs caused by the device’s default system locale.

• [Android] Fixed proguard warning in specific versions of RN.

Version 3.7.2

Improvement

• Updated expo config plugin to fix release build issue in RN 0.73.

Version 3.7.1

Improvement

• [Android] Updated freeRASP SDK artifact hosting ensuring better stability and availibility.

Bug Fix

• [Android] Fixed compatibility issues with RN < 0.63.

Version 3.7.0

New Feature

• Added support for apps built with Expo SDK.

• [iOS] Added Privacy Manifest.

• [iOS] Added codesigning for the SDK, it is signed by:

  • Team ID: ASQC376HCN,

  • Team Name: AHEAD iTec, s.r.o..

Improvement

• Updated CURL to 8.5.0 and OpenSSL to 1.1.1w.

• [Android] Shortened duration of threat evaluation.

• [Android] Improved appIntegrity check and its logging.

• [iOS] Improved obfuscation of Swift and C strings.

Bug Fix

• [Android] Fixed a native crash bug during one of the native root checks (detected after NDK upgrade).

• [iOS] Fixed memory leak (freeRASP iOS issue #13).

Curious about more in-depth changes for React Native? Head over to our GitHub Changelog for the complete history of updates!

Latest Version: 8.1.0

New Feature

• Added interface for multi-instance detection

Improvement

• [iOS] Added palera1n jailbreak detection

• [iOS] Improved Dopamine jailbreak detection

• [Android] Improved emulator detection

• [Android] Added support for 16 KB pages

Fixed

• [iOS] Resolved memory-related stability issues

• [Android] Removed malware report duplicates

Version: 8.0.0

New feature

• Added interface for screenshot / screen recording blocking on iOS.

Changed

• Plugin now requires kotlin version >= 2.0.0.

Improvements

• Added interface for external ID storage.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

• [Android] New root detection checks added.

Fixed

• [iOS] Resolved an issue with the screen recording detection.

• [iOS] Resolved an issue that prevented Xcode tests from running correctly.

Version 7.4.1

Changed

• [Android] Compile API increased to 35, dependencies updated

• [Android] Internal library obfuscation reworked

• [Android] Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

• [iOS] Improvement of the obfuscation of the SDK

• [iOS] Deep signing of the OpenSSL binaries

Fixed

• [Android] ANR issues bug-fixing

Version 7.4.0

New feature

• Added screenshot - detection of screenshots, refer to the freeRASP integration documentation.

• Added screenRecording - detection of screen recording, refer to the freeRASP integration documentation.

• Added blockScreenCapture for FLAG_SECURE control, an active protection against screen capturing.

• Added isScreenCaptureBlocked - to receive whether the screen capture is blocked

Changed

• [Android] Set following required SDK versions for Android plugin:

  • minSdkVersion 23

  • targetSdkVersion to 35

  • compileSdkVersion to 35

Improvement

• [Android] Improved root detection

Fixed

• [Android] Proguard rules to address warnings from okhttp dependency

Version 7.3.0

Improvement

• [Android] Added request integrity information to data collection headers.

• [Android] Enhanced and accelerated the data collection logic.

Version 7.2.0

Improvement

• App icons for detected malware are not fetched automatically anymore, which reduces computation required to retrieve malware data. From now on, app icons have to be retrieved using the getAppIcon method.

• Parsing of malware data is now async.

• [Android] Malware data is now parsed on background thread to improve responsiveness.

Version 7.1.0

New features

• [Android] adbEnabled callback, allowing you to detect USB debugging option enabled in the developer settings on the device.

Version 7.0.0

New features and improvements

• Added configuration fields for malware detection.

• [Android] Malware detection as a new callback for enhanced app security.

• [Android] Refactoring Magisk checks in the root detection.

• [iOS] Enhanced security with Serotonin Jailbreak Detection to identify compromised devices.

Maintenance

• BREAKING CHANGE: New dependency is required to run freeRASP; add following plugin to android/build.gradle:

plugins {
    id 'org.jetbrains.kotlin.plugin.serialization' version '1.7.10'
}

• [iOS] Updated SDK code signing; it will now be signed with:

  • Team ID: PBDDS45LQS

  • Team Name: Lynx SFT s.r.o.

Bug Fix

• [Android] Resolved IllegalArgumentException caused by unregistering not registered receiver in TalsecMonitoringReceiver

Version 6.3.3

Improvement

• [iOS] Renewed the signing certificate.

Version 6.3.2

Bug Fix

• [Android] Reported ANR issues present on some devices were resolved (GH Flutter issue #138).

• [Android] Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter issue #140).

• [Android] Reported crashes caused by the UnsupportedOperationException were resolved.

Version 6.3.1

Bug Fix

• [Android] False positives for hook detection.

Version 6.3.0

New Feature

• [Android] Added the auditing of the internal execution for the future check optimization and overall security improvements.

• [iOS] Dopamine jailbreak detection.

Improvement

• Improved error messages when validation of the freeRASP configuration fails.

• Updated CURL to 8.8.0 and OpenSSL to 3.0.14 (Github issue #114).

• [Android] Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable.

• [Android] Refactored fetching the list of installed applications for root and hook detection.

• [iOS] Enhanced and accelerated the data collection logic.

Bug Fix

• [Android] Fixed native crashes (SEGFAULT errors) in ifpip method.

• [Android] Fixed collision for command line tools (like ping) invoked without absolute path (Github issue #41).

Version 6.2.0

New Feature

• Added a new threat systemVPN for VPN detection.

• [Android] Added a new threat devMode for Developer mode detection.

Improvement

• Updated the CA bundle to enhance security for secure connections.

• [Android] Updated the GMS dependency to a newer version for improved performance and compatibility.

• [iOS] Passcode check is now performed periodically.

Bug Fix

• Resolved a problem with displaying the Arabic alphabet in logs caused by the device’s default system locale.

Version 6.1.3

Bug Fix

• Fixed BAD_ACCESS error occurring in specific versions of cordova-ios plugin (#28).

Version 6.1.2

Bug Fix

• [Android] Removed the talsec namespace that caused change of namespaces for whole app.

• [iOS] Fixed issue causing app crash with lower versions of cordova-ios plugin.

Version 6.1.1

Improvement

• [Android] Updated freeRASP SDK artifact hosting ensuring better stability and availibility.

Curious about more in-depth changes for Cordova? Head over to our GitHub Changelog for the complete history of updates!

Latest Version: 2.2.0

New Feature

• Added interface for multi-instance detection

Improvement

• [iOS] Added palera1n jailbreak detection

• [iOS] Improved Dopamine jailbreak detection

• [Android] Improved emulator detection

• [Android] Added support for 16 KB pages

Fixed

• [iOS] Resolved memory-related stability issues

• [Android] Removed malware report duplicates

Version: 2.1.0

New feature

• Added interface for screenshot / screen recording blocking on iOS.

Improvements

• Added interface for external ID storage.

• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

• [Android] New root detection checks added.

Fixed

• [iOS] Resolved an issue with the screen recording detection.

• [iOS] Resolved an issue that prevented Xcode tests from running correctly.

Version 2.0.0

Changed

• Android SDK requires kotlin_version >= 2.0.0

• [Android] Compile API increased to 35, dependencies updated

• [Android] Internal library obfuscation reworked

• [Android] Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

• [iOS] Improvement of the obfuscation of the SDK

• [iOS] Deep signing of the OpenSSL binaries

Fixed

• [Android] ANR issues bug-fixing

Version 1.10.0

New feature

• Added screenshot - detection of screenshots, refer to the freeRASP integration documentation.

• Added screenRecording - detection of screen recording, refer to the freeRASP integration documentation.

• Added blockScreenCapture for FLAG_SECURE control, an active protection against screen capturing.

• Added isScreenCaptureBlocked - to receive whether the screen capture is blocked

Changed

• [Android] Raised Android compileSDK level to 35

• [Android] Set minifyEnabled in plugin to true implicitly

Improvement

• [Android] Improved root detection

Fixed

• [Android] Proguard rules to address warnings from okhttp dependency

Version 1.9.0

Improvement

• [Android] Added request integrity information to data collection headers.

• [Android] Enhanced and accelerated the data collection logic.

Version 1.8.0

Improvement

• App icons for detected malware are not fetched automatically anymore, which reduces computation required to retrieve malware data. From now on, app icons have to be retrieved using the getAppIcon method.

• Parsing of malware data is now async.

• [Android] Malware data is now parsed on background thread to improve responsiveness.

Version 1.7.0

New features

• [Android] adbEnabled callback, allowing you to detect USB debugging option enabled in the developer settings on the device.

Version 1.6.0

New features

• Added configuration fields for malware detection.

• [Android] Malware detection as a new callback for enhanced app security.

• [Android] Refactoring Magisk checks in the root detection.

• [iOS] Enhanced security with Serotonin Jailbreak Detection to identify compromised devices.

Maintenance

• [iOS] Updated SDK code signing; it will now be signed with:

  • Team ID: PBDDS45LQS

  • Team Name: Lynx SFT s.r.o.

Bug Fix

• Resolved compatibilty issues with JDK 21 (issue #21)

Version 1.5.3

Improvement

• [iOS] Renewed the signing certificate.

Version 1.5.2

Bug Fix

• [Android] Reported ANR issues present on some devices were resolved (GH Flutter issue #138).

• [Android] Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter issue #140).

• [Android] Reported crashes caused by the UnsupportedOperationException were resolved.

Version 1.5.1

Bug Fix

• [Android] False positives for hook detection.

Version 1.5.0

New Feature

• [Android] Added the auditing of the internal execution for the future check optimization and overall security improvements.

• [iOS] Dopamine jailbreak detection.

Improvement

• Improved error messages when validation of the freeRASP configuration fails.

• Updated CURL to 8.8.0 and OpenSSL to 3.0.14 (Github issue #114).

• [Android] Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable.

• [Android] Refactored fetching the list of installed applications for root and hook detection.

• [iOS] Enhanced and accelerated the data collection logic.

Bug Fix

• [Android] Fixed native crashes (SEGFAULT errors) in ifpip method.

• [Android] Fixed collision for command line tools (like ping) invoked without absolute path (Github issue #41).

Version 1.4.0

New Feature

• Added a new threat systemVPN for VPN detection.

• [Android] Added a new threat devMode for Developer mode detection.

Improvement

• Updated the CA bundle to enhance security for secure connections.

• [Android] Updated the GMS dependency to a newer version for improved performance and compatibility.

• [iOS] Passcode check is now performed periodically.

Bug Fix

• Resolved a problem with displaying the Arabic alphabet in logs caused by the device’s default system locale.

Version 1.3.1

Improvement

• [Android] Updated freeRASP SDK artifact hosting ensuring better stability and availibility.

Version 1.3.0

New Feature

• [iOS] Added Privacy Manifest.

• [iOS] Added codesigning for the SDK, it is signed by:

  • Team ID: ASQC376HCN,

  • Team Name: AHEAD iTec, s.r.o..

Improvement

• Updated CURL to 8.5.0 and OpenSSL to 1.1.1w.

• [Android] Shortened duration of threat evaluation.

• [Android] Improved appIntegrity check and its logging.

• [iOS] Improved obfuscation of Swift and C strings.

Bug Fix

• [Android] Fixed a native crash bug during one of the native root checks (detected after NDK upgrade).

• [iOS] Fixed memory leak (freeRASP iOS issue #13)

Version 1.2.1

• [Android] Fixed bug that prevented firing callbacks in specific situations.

• [iOS] Fixed bug that caused app being killed in specific situations (#42).

Curious about more in-depth changes for Capacitor? Head over to our GitHub Changelog for the complete history of updates!