We’ve recently received reports that some applications using the Sinch Android SDK were flagged as potentially vulnerable by Google Play due to an outdated version of OpenSSL.
Importantly, our Android SDK has been using a version of OpenSSL which was patched to prevent from the Heartbleed flaw and has not been vulnerable to it.
In order to be fully compliant with the new Google Play policy, we have now updated the version of OpenSSL included in our latest SDK (from v3.4.3) which can be downloaded here:
Please make sure to use the latest version of the Sinch Android SDK to avoid any warning from Google Play at your next app submission.
For anyone who’s tried to implement an accurate yet user friendly UI flow capturing users’ phone numbers, this will resonate with you. For the others, luckily you will be able to avoid this hassle using our latest Verification SDKs. Getting… read more