Hi there
Could you consider adding a fair warning that including this library into a client application is highly insecure and should not be done unless the developer knows 100% sure the .apk can't fall in the wrong hands? Even with encryption, obfuscation or whatever, the Firebase secret token can be captured through an injected debugger or simply by intercepting the outgoing call.
Hi there
Could you consider adding a fair warning that including this library into a client application is highly insecure and should not be done unless the developer knows 100% sure the .apk can't fall in the wrong hands? Even with encryption, obfuscation or whatever, the Firebase secret token can be captured through an injected debugger or simply by intercepting the outgoing call.