clevertap-react-native icon indicating copy to clipboard operation
clevertap-react-native copied to clipboard
verified publisher icon CleverTap

Possible Vulnerability

Open umar98 opened this issue 3 years ago • 5 comments

Greetings,

So, while conducting our VAPT assessment I came across an issue that as per our regularity we're not allowed to install hardcoded credentials in the Manifest or Info.plist file. Any workaround for this method?

umar98 avatar Oct 20 '22 13:10 umar98

@umar98 You can go through this https://developer.clevertap.com/docs/android-advanced-features#changing-account-credentials

piyush-kukadiya avatar Oct 21 '22 06:10 piyush-kukadiya

@umar98 You can go through this https://developer.clevertap.com/docs/android-advanced-features#changing-account-credentials

Thank You. Any such this for the React Native SDK? If not, can also such be found for IOS?

umar98 avatar Oct 22 '22 09:10 umar98

@umar98 Api is not there for React native Android, you will have to use native code. @akashvercetti Can you comment on iOS?

piyush-kukadiya avatar Oct 25 '22 07:10 piyush-kukadiya

@umar98 you can try this: https://developer.clevertap.com/docs/advanced-options-ios#setting-account-credentials

akashvercetti avatar Oct 25 '22 07:10 akashvercetti

@piyush-kukadiya, @akashvercetti Thank you for all your efforts.

Is there any way around I can avoid this in React Native? I use React Native build and as per our Compliant Body, we're not allowed to have any data in the Manifest or the plist file.

umar98 avatar Oct 25 '22 08:10 umar98

@umar98 Were you able to run this for React Native?

darshanclevertap avatar Feb 01 '23 10:02 darshanclevertap