Fixing security issue

Plugin logs sensitive information and that is considered as a security issue. iOS logs are can be easily accessed by attacker. References: https://www.owasp.org/index.php/Mobile_Top_10_2016-M2-Insecure_Data_Storage https://www.kaspersky.com/blog/starbucks-moves-quick-to-fix-application-security-vulnerability/3510/ (Starbucks for instance had problem with placing sensitive data to iOS logs and that was a big scandal ;-) )
ionic-team · Feb 20, 2018 · 9802306 · 9802306
1 parent d9bbf38
commit 9802306
Showing 1 changed file with 1 addition and 3 deletions.
diff --git a/src/ios/CDVKeychain.m b/src/ios/CDVKeychain.m
@@ -69,9 +69,7 @@ - (void) set:(CDVInvokedUrlCommand*)command {
     NSString* key = [arguments objectAtIndex:0];
     NSString* value = [arguments objectAtIndex:1];
     BOOL useTouchID = [[arguments objectAtIndex:2] boolValue];
-
-      NSLog(@"SET %@ %@ %d", key ,value, useTouchID);
-
+
     A0SimpleKeychain *keychain = [A0SimpleKeychain keychain];
 
     if(useTouchID) {