From 0e9adebe789a81199fe80097f4e49eb495e67cc6 Mon Sep 17 00:00:00 2001 From: Ole-Morten Duesund Date: Thu, 5 Mar 2026 11:55:24 +0100 Subject: [PATCH] Harden build and config security - Uncomment *.jks and *.keystore in .gitignore to prevent accidental keystore commits - Disable android:allowBackup to prevent ADB data extraction - Add distributionSha256Sum to gradle-wrapper.properties for tamper detection of Gradle distributions Co-Authored-By: Claude Opus 4.6 --- .gitignore | 5 ++--- app/src/main/AndroidManifest.xml | 2 +- gradle/wrapper/gradle-wrapper.properties | 1 + 3 files changed, 4 insertions(+), 4 deletions(-) diff --git a/.gitignore b/.gitignore index 0250fef..778ebeb 100644 --- a/.gitignore +++ b/.gitignore @@ -42,9 +42,8 @@ captures/ *.iws # Keystore files -# Uncomment the following lines if you do not want to check your keystore files in. -#*.jks -#*.keystore +*.jks +*.keystore # External native build folder generated in Android Studio 2.2 and later .externalNativeBuild diff --git a/app/src/main/AndroidManifest.xml b/app/src/main/AndroidManifest.xml index 6961041..8cd08b7 100644 --- a/app/src/main/AndroidManifest.xml +++ b/app/src/main/AndroidManifest.xml @@ -17,7 +17,7 @@