Facebook SDK debug mode enabled
Facebook SDK debug mode enabled
Description
The application is compiled with Facebook SDK debug mode FacebookSdk.setIsDebugEnabled enabled. The debug logs contain detailed requests and JSON responses, which might expose sensitive information.
Recommendation
Disable debug logs before deploying your app to the public.
FacebookSdk.setIsDebugEnabled(false);
Method signature:
public static void setIsDebugEnabled(boolean enabled)
If the API defaults to BuildConfig.DEBUG.
Links
Standards
- OWASP_MASVS_L1:
- MSTG_CODE_2
- MSTG_CODE_4
- OWASP_MASVS_L2:
- MSTG_CODE_2
- MSTG_CODE_4
- PCI_STANDARDS:
- REQ_2_2
- REQ_6_2