Why is this important?
Android mostly adheres to secure defaults, but there are ways to introduce configuration issues.
Check out this video for a high-level explanation of Security Misconfiguration issues:
Fixing Insecure Configuration
Option A: Disable Remote WebView debugging
- Go through the issues that GuardRails identified in the PR.
- Remove the code that has this pattern:
- Or make sure this code is not used in production
- Test it
- Ship it 🚢 and relax 🌴