lionsdev/unionflow-mobile-apps
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(security): SPKI pinning rotation Firebase + Play Integrity/App Attest + freerasp 7.5.1

Browse Source 
P0-NEW-21 — SPKI Pinning service avec rotation Firebase Remote Config
  - Remplace ancien check CN par digest SHA-256 SPKI
  - Liste pins dynamique depuis Firebase RC (clé 'spki_pins')
  - Multi-pin (leaf + backup + intermediate)
  - Câblé dans ApiClient._configureSslPinning()

P0-NEW-22 — App Device Integrity (Play Integrity Android + App Attest iOS)
  - Token attestation court cache 60s
  - Bypass kDebugMode
  - Obligatoire audit BCEAO PI-SPI banking-grade

pubspec.yaml :
  - freerasp 7.0.0 → 7.5.1
  - +app_device_integrity 1.1.0
  - +firebase_core 3.6.0 + firebase_remote_config 5.1.3
This commit is contained in:
lionsdev
2026-04-25 01:27:44 +00:00
parent 37db88672b
commit 8356ccc0b0
4 changed files with 271 additions and 14 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
pubspec.yaml
View File

@@ -61,8 +61,13 @@ dependencies:
# Notifications
flutter_local_notifications: ^18.0.1
# Sécurité mobile MASVS v2 — détection reverse engineering/tampering
freerasp: ^7.0.0
# Sécurité mobile MASVS v2.1 — détection reverse engineering/tampering + integrity attestation
freerasp: ^7.5.1
# Play Integrity (Android) + App Attest (iOS) — P0-NEW-22 audit BCEAO PI-SPI
app_device_integrity: ^1.1.0
# SPKI pinning rotation dynamique via Firebase Remote Config — P0-NEW-21
firebase_core: ^3.6.0
firebase_remote_config: ^5.1.3
# Crash reporting & performance monitoring
sentry_flutter: ^8.14.0