is setting
android:allowBackup="true"
android:fullBackupContent="true"
considered a security risk for android applications? doesnt it expose both user data and the application source code to hackers?
CodePudding user response:
This might be opinion based.
The Data Backup feature does only upload additional application data. It does not upload your APK or source code.
From a security standpoint, uploading user data to an external services is always worse than just leaving it local. If you deal with very sensitive data, you shouldn't upload it.
