root path security issue
allen-hsu opened this issue · comments
allenhsu commented
Steps to reproduce
plz ref here:
https://developer.android.com/privacy-and-security/risks/file-providers
https://mas.owasp.org/MASVS/05-MASVS-STORAGE/
I think shouldn't to use root-path, because can let anyone to access your file
Expected behavior
Don't use <root-path>
Actual behavior
use <root-path>
Environment
- React Native version:
- React Native platform + platform version: iOS 9.0, Android 5.0, etc
- Typescript version (if using typescript): 3.8+ required, what version is in your environment?
react-native-share
Version: npm version or "master"
Link to repo (highly encouraged)
Mike Hardy commented
PRs happily accepted
github-actions commented
This issue has been automatically marked as stale because it has not had recent activity. It will be closed if no further activity occurs. Thank you for your contributions. You may also mark this issue as a "discussion" and i will leave this open