Skip to content

CHANGELOG.md

Latest commit

 

History

History
811 lines (487 loc) · 22.2 KB

CHANGELOG.md

File metadata and controls

811 lines (487 loc) · 22.2 KB

Changelog

All notable changes to this project will be documented in this file.

The format is based on Keep a Changelog, and this project adheres to Semantic Versioning.

[4.5.2] - 2026-03-24

  • Android SDK version: 18.0.4
  • iOS SDK version: 6.14.4

React Native

Changed

  • Enhanced event dispatchers logic

iOS

Fixed

  • Fixed new jailbreak checks false positives on iOS 14 and 13.
  • Fixed false positives with jailbreak on iOS 15 and 16.
  • Fixed issue with app crashing on screenshot/screen recording.
  • Fixed retrigger jailbreak issue on iOS 15 and 16.

[4.5.1] - 2026-03-16

  • Android SDK version: 18.0.4
  • iOS SDK version: 6.14.1

React Native

Fixed

  • Fixed case where event dispatchers on Android were not initialized before calling onResume at the app launch

[4.5.0] - 2026-03-03

  • Android SDK version: 18.0.4
  • iOS SDK version: 6.14.1

React Native

Changed

  • Updated the internal handling of ExternalIdResult on Android (for storeExternalId() method)

Android

Added

  • Added support for KernelSU to the existing root detection capabilities
  • Added support for HMA to the existing root detection capabilities
  • Added new malware detection capabilities
  • Added onAutomationDetected() callback to ThreatDetected interface
    • We are introducing a new capability, detecting whether the device is being automated using tools like Appium
  • Added value restrictions to externalId
    • Method storeExternalId() now returns ExternalIdResult, which indicates Success or Error when externalId violates restrictions

Fixed

  • Fixed exception handling for the KeyStore getEntry operation
  • Fixed issue in ScreenProtector concerning the onScreenRecordingDetected invocations
  • Merged internal shared libraries into a single one, reducing the final APK size
  • Fixed bug related to key storing in keystore type detection (hw-backed keystore check)
  • Fixed manifest queries merge

Changed

  • Removed unused library tmlib
  • Refactoring of signature verification code
  • Updated compile and target API to 36
  • Improved root detection capabilities
  • Detection of wireless ADB added to ADB detections

iOS

Added

  • Added time spoofing detection, detecting an inaccurate device clock. It is a new threat timeSpoofing.

Changed

  • Improved jailbreak detection methods.

[4.4.0] - 2026-02-06

  • Android SDK version: 18.0.1
  • iOS SDK version: 6.13.0

React Native

Added

  • Added cache for freeRASP callbacks when listener is not registered with the app
  • Added API for automation callback into ThreatEventActions (Android only)

Fixed

  • Prevent multiple registration of the freeRASP listeners on the native side

Changed

  • Updated compile and target SDK versions to 36 on Android
  • Higher compileSdk from [rootProject, plugin] is now used in build.gradle on Android

Android

Added

  • Added support for KernelSU to the existing root detection capabilities
  • Added support for HMA to the existing root detection capabilities
  • Added new malware detection capabilities
  • Added onAutomationDetected() callback to ThreatDetected interface
    • We are introducing a new capability, detecting whether the device is being automated using tools like Appium
  • Added value restrictions to externalId
    • Method storeExternalId() now returns ExternalIdResult, which indicates Success or Error when externalId violates restrictions

Fixed

  • Fixed exception handling for the KeyStore getEntry operation
  • Fixed issue in ScreenProtector concerning the onScreenRecordingDetected invocations
  • Merged internal shared libraries into a single one, reducing the final APK size
  • Fixed bug related to key storing in keystore type detection (hw-backed keystore check)
  • Fixed manifest queries merge

Changed

  • Removed unused library tmlib
  • Refactoring of signature verification code
  • Updated compile and target API to 36
  • Improved root detection capabilities
  • Detection of wireless ADB added to ADB detections

[4.3.2] - 2026-01-03

  • Android SDK version: 17.0.1
  • iOS SDK version: 6.13.0

React Native

Fixed

  • Resolved potential NullPointerException when execution state events are being sent

[4.3.1] - 2025-12-16

  • Android SDK version: 17.0.1
  • iOS SDK version: 6.13.0

React Native

Fixed

[4.3.0] - 2025-10-31

  • Android SDK version: 17.0.1
  • iOS SDK version: 6.13.0

React Native

Added

  • Added killOnBypass to TalsecConfig that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker (Android only) (Issue 65)
  • Added API for timeSpoofing callback into ThreatEventActions (Android only)
  • Added API for unsecureWifi callback into ThreatEventActions (Android only)
  • Added API for allChecksFinished callback into new RaspExecutionStateEventActions object
  • Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission

Fixed

  • Resolved potential collision in threat identifiers

Android

Added

  • Added killOnBypass method to the TalsecConfig.Builder that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker Issue 65
  • We are introducing a new capability, detecting whether the device time has been tampered with (timeSpoofing)
  • We are introducing a new capability, detecting whether the location is being spoofed on the device (locationSpoofing)
  • We are introducing a new capability, detection of unsecure WiFi (unecureWifi)
  • Removed deprecated functionality Pbkdf2Native and both related native libraries (libpbkdf2_native.so and libpolarssl.so)
  • Added new RaspExecutionState which contains onAllChecksFinished() method, which is triggered after all checks are completed.
  • Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission
  • New option to start Talsec, Talsec.start() takes new parameter TalsecMode that determines the dispatcher thread of initialization and sync checks (uses background thread by default)
  • Capability to check if another app has an option REQUEST_INSTALL_PACKAGES enabled in the system settings to malware detection

Fixed

  • ANR issue caused by registerScreenCaptureCallback() method on the main thread
  • NullPointerException when checking key alias in Keystore on Android 7
  • JaCoCo issue causing MethodTooLargeException during instrumentation
  • DeadApplicationException when calling Settings.Global.getInt or Settings.Secure.getInt on invalid context
  • AndroidKeyStore crashes causing java.util.concurrent.TimeoutException when calling finalize() method on Cipher (GC issues)
  • Fixed issue with late initializers and TalsecMode coroutines scopes

Changed

  • Shortened the value of threat detection interval
  • Refactoring of internal architecture of SDK that newly uses Coroutines to manage threading
  • Update of internal dependencies and security libraries

iOS

Changed

  • Updated internal dependencies

[4.2.4] - 2025-09-17

  • iOS SDK version: 6.12.1
  • Android SDK version: 16.0.4

React Native

Fixed

  • iOS dependencies are now installed via install_modules_dependencies by default

[4.2.3] - 2025-09-03

  • iOS SDK version: 6.12.1
  • Android SDK version: 16.0.4

Android

Fixed

  • Root detection related bugs causing false positives

Changed

  • Deprecated Nexus repository removed (GCP artifact registry is the main supported distribution repository)

[4.2.2] - 2025-08-21

  • iOS SDK version: 6.12.1
  • Android SDK version: 16.0.1

React Native

Changed

  • Replaced deprecated getCurrentActivity() call on Android (compatibility with RN 0.81+)

[4.2.1] - 2025-08-05

  • iOS SDK version: 6.12.1
  • Android SDK version: 16.0.1

React Native

Fixed

  • Possible conflict with other packages during proguard code minification

Android

Fixed

  • Issue with empty SharedPreferences files

Changed

  • Decreased version of Kotlin to 2.0.0

[4.2.0] - 2025-07-16

  • iOS SDK version: 6.12.1
  • Android SDK version: 16.0.1

Android

Added

  • Added support for 16 KB memory page sizes
  • Added multiInstance callback
    • Detecting whether the application is installed/running in various multi-instancing environments (e.g. Parallel Space)

Changed

  • The ADB service running as a root is a signal for root detection
  • Improved emulator detection
  • Internal security improvements

Fixed

  • Removed malware report duplicates

iOS

Added

  • Added palera1n jailbreak detection

Changed

  • Improved Dopamine jailbreak detection

Fixed

  • Resolved memory-related stability issues.

[4.1.0] - 2025-05-15

  • iOS SDK version: 6.11.0
  • Android SDK version: 15.1.0

React Native

Added

  • Added interface for screenshot / screen recording blocking on iOS
  • Added interface for external ID storage

Android

Added

  • Added externalId to put an integrator-specified custom identifier into the logs.
  • Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

Changed

  • New root detection checks added

iOS

Added

  • Added externalId to put an integrator-specified custom identifier into the logs.
  • Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.
  • Screen capture protection obscuring app content in screenshots and screen recordings preventing unauthorized content capture. Refer to the freeRASP integration documentation.

Fixed

  • Resolved an issue with the screen recording detection.
  • Resolved an issue that prevented Xcode tests from running correctly.

[4.0.0] - 2025-03-25

  • iOS SDK version: 6.9.0
  • Android SDK version: 15.0.0

React Native

Changed

  • Android SDK requires kotlinVersion >= 2.0.0
  • Set Java verison to 17

Android

Changed

  • Compile API increased to 35, dependencies updated
  • Internal library obfuscation reworked
  • Root detection divided into 2 parts (quick initial checks, and time-demanding asynchronous post checks)

Fixed

  • ANR issues bug-fixing

iOS

Added

  • Improvement of the obfuscation of the SDK.

Changed

  • Deep signing of the OpenSSL binaries.

[3.14.1] - 2025-03-10

  • iOS SDK version: 6.8.0
  • Android SDK version: 14.0.1

React Native

Fixed

  • Take Android targetSdkVersion, compileSdkVersion from plugin only

[3.14.0] - 2025-03-05

  • iOS SDK version: 6.8.0
  • Android SDK version: 14.0.1

React Native

Added

  • blockScreenCapture method to block/unblock screen capture
  • isScreenCaptureBlocked method to get the current screen capture blocking status
  • New callbacks:
    • screenshot: Detects when a screenshot is taken
    • screenRecording: Detects when screen recording is active

Changed

  • Raised Android compileSDK level to 35

Fixed

  • Compatibility issues with RN New Architecture
  • Added proguard rules for malware data serialization in release mode on Android

Android

Added

  • Passive and active screenshot/screen recording protection

Changed

  • Improved root detection

Fixed

  • Proguard rules to address warnings from okhttp dependency

iOS

Added

  • Passive Screenshot/Screen Recording detection

[3.13.0] - 2024-12-20

  • iOS SDK version: 6.6.3
  • Android SDK version: 13.2.0

Android

Added

  • Added request integrity information to data collection headers.
  • Enhanced and accelerated the data collection logic.

[3.12.0] - 2024-12-06

  • iOS SDK version: 6.6.3
  • Android SDK version: 13.0.0

React Native

Changed

  • App icons for detected malware are not fetched automatically anymore, which reduces computation required to retrieve malware data. From now on, app icons have to be retrieved using the getAppIcon method
  • Parsing of malware data is now async

Android

Changed

  • Malware data is now parsed on background thread to improve responsiveness

[3.11.0] - 2024-11-19

React Native

Added

  • Added adbEnabled callback, which allows you to detect USB debugging option enabled in the developer settings on the device

Android

Added

  • ADB detection feature

[3.10.0] - 2024-11-15

  • Android SDK version: 12.0.0
  • iOS SDK version: 6.6.3

React Native

Added

  • Added configuration fields for malware detection

Android

Added

  • New feature: malware detection as a new callback for enhanced app security

Fixed

  • Refactoring Magisk checks in the root detection

iOS

Added

Changed

  • Updated SDK code signing; it will now be signed with:
    • Team ID: PBDDS45LQS
    • Team Name: Lynx SFT s.r.o.

[3.9.3] - 2024-10-28

  • Android SDK version: 11.1.3
  • iOS SDK version: 6.6.1

iOS

Changed

  • Renewed the signing certificate

[3.9.2] - 2024-10-18

  • Android SDK version: 11.1.3

  • iOS SDK version: 6.6.0

  • Android SDK version: 11.1.3

  • iOS SDK version: 6.6.0

Android

Fixed

  • Reported ANR issues present on some devices were resolved (GH Flutter issue #138)
  • Reported crashes caused by ConcurrentModificationException and NullPointerException were resolved (GH Flutter issue #140)
  • Reported crashes caused by the UnsupportedOperationException were resolved

[3.9.1] - 2024-09-30

  • Android SDK version: 11.1.1
  • iOS SDK version: 6.6.0

Android

Fixed

  • False positives for hook detection

[3.9.0] - 2024-09-25

  • Android SDK version: 11.1.0
  • iOS SDK version: 6.6.0

React Native

Fixed

  • Fixed incorrect path to types in package.json

Changed

  • Improved error messages when validation of the freeRASP configuration fails

Android

Added

  • Added the auditing of the internal execution for the future check optimization and overall security improvements.

Fixed

  • Fixed native crashes (SEGFAULT errors) in ifpip method
  • Fixed collision for command line tools (like ping) invoked without absolute path

Changed

  • ❗️Breaking: Changed the way TalsecConfig is created, we introduced a Builder pattern to make the process more streamlined and readable
  • Updated OpenSSL to version 3.0.14
  • Updated CURL to version 8.8.0
  • Refactored fetching the list of installed applications for root and hook detection.

iOS

Added

Changed

  • Updated OpenSSL to version 3.0.14
  • Updated CURL to version 8.8.0

[3.8.2] - 2024-09-02

React Native

Fixed

  • Updated proguard rules to resolve build issues in RN 0.75.x

[3.8.1] - 2024-06-19

React Native

Changed

[3.8.0] - 2024-05-31

freeRASP 3.8.0

  • ⚡ Added new threat systemVPN for VPN detection
  • 📄 Documentation updates

Android

  • ⚡ Added new threat devMode for Developer mode detection
  • ⚡ Fixed proguard warning in specific versions of RN
  • ⚡ Fixed issue with Arabic alphabet in logs caused by the device’s default system locale
  • ✔️ Increased the version of the GMS dependency
  • ✔️ Updated CA bundle

iOS

  • ⚡ Enhanced and accelerated the data collection logic
  • ⚡ Fixed issue with Arabic alphabet in logs caused by the device’s default system locale
  • ⚡ Passcode check is now periodical
  • ✔️ Updated CA bundle

freeRASP 3.7.2

  • ⚡ Update expo config plugin to fix release build issue in RN 0.73

freeRASP 3.7.1

Android

  • ⚡ Updated freeRASP SDK artifact hosting ensuring better stability and availibility
  • ⚡ Fixed compatibility issues with RN < 0.63

freeRASP 3.7.0

  • ⚡ Added support for apps built with Expo SDK
  • 📄 Documentation updates

Android

  • ⚡ Shortened duration of threat evaluation
  • ⚡ Fixed a native crash bug during one of the native root checks (detected after NDK upgrade)
  • ⚡ Improved appIntegrity check and its logging
  • ⚡ Updated CURL to 8.5.0 and OpenSSL to 1.1.1w

iOS

  • ❗ Added Privacy Manifest
  • ❗ Added codesigning for the SDK, it is signed by:
    • Team ID: ASQC376HCN
    • Team Name: AHEAD iTec, s.r.o.
  • ⚡ Improved obfuscation of Swift and C strings
  • ⚡ Fixed memory leak (freeRASP iOS issue #13)
  • ⚡ Updated CURL to 8.5.0 and OpenSSL to 1.1.1w

freeRASP 3.6.1

  • 📄 Documentation updates

iOS

  • ⚡ Fixed bug that caused app being killed in specific situations (#42)

freeRASP 3.6.0

  • ⚡ Improved reaction obfuscation
  • 📄 Documentation updates

Android

  • ⚡ Fixed ProviderException which could be occassionally triggered
  • ⚡ Fixed bug causing incompatibility with some versions of React Native (#38)

iOS

  • ❗ Raised supported Xcode version to 14.3.1
  • ⚡ Improved SDK obfuscation

freeRASP 3.5.0

  • ⚠️ Updated the talsecStart() method to return Promise<string>. If freeRASP starts successfuly, the method will return freeRASP started string. There are not any changes of the interface if you are using the provided useFreeRasp hook.
  • ⚡ Improved the message passing between native iOS/Android and React Native sides
  • ✔️ Restricted message passing to valid callbacks only. If an invalid callback is received, the SDK will kill the app

freeRASP 3.4.0

  • 📄 Documentation updates and improvements

Android

  • ✔️ updated CA bundle for logging pinning
  • ✔️ added error logging of network issues within the logging process
  • ✔️ added retry politics for logging
  • ⚡ fixed issue with DeadObjectException on Android 5 and 6 caused by excessive PackageManager.queryIntentActivities() usage
  • ⚡ improved root detection capabilities

freeRASP 3.3.1

iOS

  • ⚡ Fixed issue with duplicate headers that caused Multiple commands produce ... error (#11, #26)

freeRASP 3.3.0

Android

  • ✔️ Removed PolarSSL native library
  • ✔️ Fixed issue with denied USE_BIOMETRICS permission

freeRASP 3.2.0

Android

  • ✔️ Added support for AGP 8.0

freeRASP 3.1.0

Android

iOS

  • ⚡ Reduced timeout period for logging from 20 sec to 5 sec
  • ⚡ Logging is now async in all calls

freeRASP 3.0.0

Android

  • ❗ BREAKING CHANGE: Raised minimum supported Android version to 6.0 (API level 23)
  • ✔️ Removed deprecated BouncyCastle dependency that could cause errors in the build phase
  • ✔️ Fixed issue that could cause NullPointerException
  • 🆕 Added new obfuscationIssues check, which is triggered when freeRASP doesn't detect any obfuscation of the source code

iOS

  • ⚠️ passcodeChange check has been deprecated
  • 🛠️ Refactored the code base

freeRASP 2.0.3

iOS

  • ✔️ Fixed issue with metadata in iOS framework
  • 📄 Documentation updates and improvements

freeRASP 2.0.2

  • 📄 Documentation updates and improvements

freeRASP 2.0.1

  • 📄 Documentation updates and improvements

freeRASP 2.0.0

What's new?

Most of the changes relates to accomodating a new way of choosing between the dev and release version of the SDK. There are also some breaking changes in the API, such as renaming parameters and changing types of callbacks. Android has also removed the HMS dependencies and improved the root detection capabilities.

JS/TS interface

  • ❗ BREAKING API CHANGE: Renamed 'device binding' to deviceBinding
    • ❗ This allows us to remove apostrophes from other callbacks, too. E.g. 'privilegedAccess' to privilegedAccess
  • ❗ Added isProd boolean parameter, which now differentiates between the release (true) and dev (false) version of the SDK. By default set to true
  • androidConfig and iosConfig are from now on optionals, you can omit a platform if you are not developing for it

Android

  • ❗ Removed the HMS dependencies
  • ❗ Only one version of the SDK is used from now on, instead of two separate for dev and release
  • ❗ The app's build.gradle does not have to be modified now
  • ⚡ Improved root detection accuracy by moving the 'ro.debuggable' property state to an ignored group
  • ⚡ Enhanced root detection capabilities by moving the selinux properties check to device state
  • ⚡ Fine-tuning root evaluation strategy

iOS

  • ❗ Removed one of the xcframeworks
  • ❗ Removed the dependency on the symlinks choosing the proper version (release/dev)
  • ❗️ Removed pre-built script for changing the Debug and Release versions

Other improvements

  • 📄 Documentation updates and improvements
  • ⚡ Updated demo app for new implementation

freeRASP 1.1.0

We are proud to share with you the first batch of improvements of freeRASP!

What's new?

Android devices now support device state listeners. What's more, we unified remaining Android and iOS interfaces for more convenient developer's experience.

Android

  • 🆕 Android now has support for device state callbacks:
    • 📲 Secure Hardware Not Available: fires when hardware-backed KeyStore is not available
    • 📲 Passcode: fires when freeRASP detects that device is not secured with any type of lock

iOS

  • ❗ BREAKING API CHANGE: Renamed Missing Secure Enclave to Secure Hardware Not Available to match the newly added Android callback. The functionality remains unchanged.

Other improvements

  • 📄 Documentation updates and improvements

freeRASP 1.0.0

  • Initial release of freeRASP.