Skip to content

Facebook SDK debug mode enabled

Facebook SDK debug mode enabled

Description

The application is compiled with Facebook SDK debug mode FacebookSdk.setIsDebugEnabled enabled. The debug logs contain detailed requests and JSON responses, which might expose sensitive information.

Recommendation

Disable debug logs before deploying your app to the public.

FacebookSdk.setIsDebugEnabled(false);

Standards

  • OWASP_MASVS_L1:
    • MSTG_CODE_2
    • MSTG_CODE_4
  • OWASP_MASVS_L2:
    • MSTG_CODE_2
    • MSTG_CODE_4
  • PCI_STANDARDS:
    • REQ_2_2
    • REQ_6_2
  • OWASP_MASVS_v2_1:
    • MASVS_RESILIENCE_3