Google Play store warning

[Tanv33rA]

Thanks for such a helpful library . we have used this module in our vpn app updated our app on play store. After uploading we got a warning from play console "your app uses software that contains security vulnerabilities for users. Apps with these vulnerabilities can expose user information or damage a user’s device, and may be considered to be in violation of our Malicious Behavior policy."

[rizwankhanMiranshah]

Did you fix it dear i also face same issue

[Tanv33rA]

no I could not found solution yet.

[egcodes]

Hi, did the solution google suggested below not work?

Additional details
To properly handle hostname verification, change the implementation of your custom HostnameVerifier interface to perform the following actions:

If you are using the HostnameVerifier interface, change the implementation of the verify method to return false whenever the hostname of the server does not meet your expectations.
If you are using the X509HostnameVerifier interface, change the implementation of the verify methods (variants 1, 2, 3) to raise an SSLException whenever the hostname of the server does not meet your expectations. Ensure that the Exceptions raised within your verify implementation are not caught and suppressed within the method. Suppressing Exceptions in this manner would cause verify to exit normally, leading the app to trust all hostnames.
Also, do not pass AllowAllHostnameVerifier as an argument to setDefaultHostnameVerifier or setHostnameVerifier (e.g., via SSLSocketFactory.ALLOW_ALL_HOSTNAME_VERIFIER). AllowAllHostnameVerifier turns off hostname verification, thus making your app vulnerable to attack.

[dygos2]

Hey @egcodes ! Did you change that in the code and after that does Google approved the apk?
Thanks!