freeRASP 3.0.0

• Android SDK version: 18.3.0
• iOS SDK version: 6.14.4

Breaking

• SuspiciousAppInfo.reason (String) renamed to reasons (string[])
• Value "blacklist" in reasons renamed to "blocklist"
• Removed TalsecMalwareConfig and TalsecAndroidConfig.malwareConfig
• SuspiciousAppDetectionConfig.malwareScanScope and reasonMode are now required

Capacitor

Added

• SuspiciousAppDetectionConfig for malware detection configuration

Removed

• TalsecMalwareConfig type and TalsecAndroidConfig.malwareConfig field

Android

Added

• New API class SuspiciousAppDetectionConfig that can be used to configure malware detection
• New API for malware detection configuration in TalsecConfig, see TalsecConfig.Builder#suspiciousAppDetection

Fixed

• Fixed VerifyError caused by JaCoCo bytecode instrumentation
• Fixed a potential cause of crash in the multi-instance detector
• Fixed Java interoperability of ScreenProtector methods
• Fixed Kotlin classpath conflicts in SDK dependency resolution (Kotlin 2.0.0)

Changed

• Fine-tuned location spoofing detection
• Modified malware incident log structure for better aggregation

freeRASP 2.5.1

• Android SDK version: 18.0.4
• iOS SDK version: 6.14.4

Capacitor

Fixed

• Fixed case where event dispatchers on Android were not initialized before calling onResume at the app launch

iOS

Fixed

• Fixed new jailbreak checks false positives on iOS 14 and 13.
• Fixed false positives with jailbreak on iOS 15 and 16.
• Fixed issue with app crashing on screenshot/screen recording.
• Fixed retrigger jailbreak issue on iOS 15 and 16.

freeRASP 2.5.0

• Android SDK version: 18.0.4
• iOS SDK version: 6.14.1

Capacitor

Changed

• Refactor the Android plugin to separate the logic for managing listener states

Android

Added

• Added support for KernelSU to the existing root detection capabilities
• Added support for HMA to the existing root detection capabilities
• Added new malware detection capabilities
• Added onAutomationDetected() callback to ThreatDetected interface
  • We are introducing a new capability, detecting whether the device is being automated using tools like Appium
• Added value restrictions to externalId
  • Method storeExternalId() now returns ExternalIdResult, which indicates Success or Error when externalId violates restrictions

Fixed

• Fixed exception handling for the KeyStore getEntry operation
• Fixed issue in ScreenProtector concerning the onScreenRecordingDetected invocations
• Merged internal shared libraries into a single one, reducing the final APK size
• Fixed bug related to key storing in keystore type detection (hw-backed keystore check)
• Fixed manifest queries merge

Changed

• Removed unused library tmlib
• Refactoring of signature verification code
• Updated compile and target API to 36
• Improved root detection capabilities
• Detection of wireless ADB added to ADB detections

iOS

Added

• Added time spoofing detection, detecting an inaccurate device clock. It is a new threat timeSpoofing.

Changed

• Improved jailbreak detection methods.

freeRASP 2.4.1

• Android SDK version: 18.0.2
• iOS SDK version: 6.13.0

Capacitor

Fixed

• Resolved potential NullPointerException when execution state events are being sent

freeRASP 2.4.0

• Android SDK version: 18.0.2
• iOS SDK version: 6.13.0

Capacitor

Added

• Added cache for freeRASP callbacks when listener is not registered with the app
• Added API for automation callback into ThreatEventActions (Android only)

Fixed

• Prevent multiple registration of the freeRASP listeners on the native side

Changed

• Updated compile and target SDK versions to 36 on Android

Android

Added

• Added support for KernelSU to the existing root detection capabilities
• Added support for HMA to the existing root detection capabilities
• Added new malware detection capabilities
• Added onAutomationDetected() callback to ThreatDetected interface
  • We are introducing a new capability, detecting whether the device is being automated using tools like Appium
• Added value restrictions to externalId
  • Method storeExternalId() now returns ExternalIdResult, which indicates Success or Error when externalId violates restrictions

Fixed

• Fixed exception handling for the KeyStore getEntry operation
• Fixed issue in ScreenProtector concerning the onScreenRecordingDetected invocations
• Merged internal shared libraries into a single one, reducing the final APK size
• Fixed bug related to key storing in keystore type detection (hw-backed keystore check)
• Fixed manifest queries merge

Changed

• Removed unused library tmlib
• Refactoring of signature verification code
• Updated compile and target API to 36
• Improved root detection capabilities
• Detection of wireless ADB added to ADB detections

freeRASP 2.3.0

• Android SDK version: 17.0.1
• iOS SDK version: 6.13.0

Capacitor

Added

• Added killOnBypass to TalsecConfig that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker (Android only) (Issue 65)
• Added API for timeSpoofing callback into ThreatEventActions (Android only)
• Added API for unsecureWifi callback into ThreatEventActions (Android only)
• Added API for allChecksFinished callback into new RaspExecutionStateEventActions object
• Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission

Fixed

• Resolved potential collision in threat identifiers

Android

Added

• Added killOnBypass method to the TalsecConfig.Builder that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker Issue 65
• We are introducing a new capability, detecting whether the device time has been tampered with (timeSpoofing)
• We are introducing a new capability, detecting whether the location is being spoofed on the device (locationSpoofing)
• We are introducing a new capability, detection of unsecure WiFi (unecureWifi)
• Removed deprecated functionality Pbkdf2Native and both related native libraries (libpbkdf2_native.so and libpolarssl.so)
• Added new RaspExecutionState which contains onAllChecksFinished() method, which is triggered after all checks are completed.
• Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission
• New option to start Talsec, Talsec.start() takes new parameter TalsecMode that determines the dispatcher thread of initialization and sync checks (uses background thread by default)
• Capability to check if another app has an option REQUEST_INSTALL_PACKAGES enabled in the system settings to malware detection

Fixed

• Root detection related bugs causing false positives
• ANR issue caused by registerScreenCaptureCallback() method on the main thread
• NullPointerException when checking key alias in Keystore on Android 7
• JaCoCo issue causing MethodTooLargeException during instrumentation
• DeadApplicationException when calling Settings.Global.getInt or Settings.Secure.getInt on invalid context
• AndroidKeyStore crashes causing java.util.concurrent.TimeoutException when calling finalize() method on Cipher (GC issues)
• Fixed issue with late initializers and TalsecMode coroutines scopes

Changed

• Deprecated Nexus repository removed (GCP artifact registry is the main supported distribution repository)
• Shortened the value of threat detection interval
• Refactoring of internal architecture of SDK that newly uses Coroutines to manage threading
• Update of internal dependencies and security libraries

iOS

Changed

• Updated internal dependencies

freeRASP 2.2.2

• Android SDK version: 17.0.1
• iOS SDK version: 6.13.0

Capacitor

Added

• Added killOnBypass to TalsecConfig that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker (Android only) (Issue 65)
• Added API for timeSpoofing callback into ThreatEventActions (Android only)
• Added API for unsecureWifi callback into ThreatEventActions (Android only)
• Added API for allChecksFinished callback into new RaspExecutionStateEventActions object
• Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission

Fixed

• Resolved potential collision in threat identifiers

Android

Added

• Added killOnBypass method to the TalsecConfig.Builder that configures if the app should be terminated when the threat callbacks are suppressed/hooked by an attacker Issue 65
• We are introducing a new capability, detecting whether the device time has been tampered with (timeSpoofing)
• We are introducing a new capability, detecting whether the location is being spoofed on the device (locationSpoofing)
• We are introducing a new capability, detection of unsecure WiFi (unecureWifi)
• Removed deprecated functionality Pbkdf2Native and both related native libraries (libpbkdf2_native.so and libpolarssl.so)
• Added new RaspExecutionState which contains onAllChecksFinished() method, which is triggered after all checks are completed.
• Added matched permissions to SuspiciousAppInfo object when malware detection reason is suspiciousPermission
• New option to start Talsec, Talsec.start() takes new parameter TalsecMode that determines the dispatcher thread of initialization and sync checks (uses background thread by default)
• Capability to check if another app has an option REQUEST_INSTALL_PACKAGES enabled in the system settings to malware detection

Fixed

• Root detection related bugs causing false positives
• ANR issue caused by registerScreenCaptureCallback() method on the main thread
• NullPointerException when checking key alias in Keystore on Android 7
• JaCoCo issue causing MethodTooLargeException during instrumentation
• DeadApplicationException when calling Settings.Global.getInt or Settings.Secure.getInt on invalid context
• AndroidKeyStore crashes causing java.util.concurrent.TimeoutException when calling finalize() method on Cipher (GC issues)
• Fixed issue with late initializers and TalsecMode coroutines scopes

Changed

• Deprecated Nexus repository removed (GCP artifact registry is the main supported distribution repository)
• Shortened the value of threat detection interval
• Refactoring of internal architecture of SDK that newly uses Coroutines to manage threading
• Update of internal dependencies and security libraries

iOS

Changed

• Updated internal dependencies

freeRASP 2.2.1

Android

Fixed

• Issue with empty SharedPreferences files

Changed

• Decreased version of Kotlin to 2.0.0

freeRASP 2.2.0

• iOS SDK version: 6.12.1
• Android SDK version: 16.0.1

Android

Added

• Added support for 16 KB memory page sizes
• Added multiInstance callback
  • We are introducing a new capability, detecting whether the application is running in various multi instancing environments

Changed

• The ADB service running as a root is a signal for root detection
• Improved emulator detection
• Internal security improvements

Fixed

• Removed malware report duplicates

iOS

Added

• Added palera1n jailbreak detection

Changed

• Improved Dopamine jailbreak detection

Fixed

• Resolved memory-related stability issues.

freeRASP 2.1.0

• iOS SDK version: 6.11.0
• Android SDK version: 15.1.0

Capacitor

Added

• Added interface for screenshot / screen recording blocking on iOS
• Added interface for external ID storage

Android

Added

• Added externalId to put an integrator-specified custom identifier into the logs.
• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.

Changed

• New root detection checks added

iOS

Added

• Added externalId to put an integrator-specified custom identifier into the logs.
• Added eventId to the logs, which is unique per each log. It allows traceability of the same log across various systems.
• Screen capture protection obscuring app content in screenshots and screen recordings preventing unauthorized content capture. Refer to the freeRASP integration documentation.

Fixed

• Resolved an issue with the screen recording detection.
• Resolved an issue that prevented Xcode tests from running correctly.