Mishaal's Android News Feed
This is a bit personal, but screw it: the All About Android podcast that I've been fortunate to be a co-host of is ending after a 12 year run. Tonight's episode (at 5:00 PM PT) will be the final one. RIP π’
From the ashes of All About Android comes the new Android Faithful podcast, and its first episode is out featuring yours truly!
We talk about Android 14 Beta 4, the Pixel Fold, and much more, so check it out!
We talk about Android 14 Beta 4, the Pixel Fold, and much more, so check it out!
π31β€10
Forwarded from linuxct's channel (linuxct)
EasterEgg14.apk
3.5 MB
I saw that new Android 14 UDC Easter Egg and I really wanted to try it on my Android 12 and 13 devices, so I patched the APK to work there.
Itβs possible it works on older versions of Android, but thatβs up to you to try.
Itβs possible it works on older versions of Android, but thatβs up to you to try.
π₯25π7π3
It's still Amazon Prime Day, and one product that's on sale is the new "OSOM Privacy Cable", a USB-C cable with a data blocker switch. It is worth it?
OSOM sent me a cable to check out, but no this post isn't sponsored. The cable is 1m/5ft in length and supports USB 2.0 data transfer rates. Sadly, no USB 3.0 means there's not enough bandwidth for DP Alt. Mode, so you can't use this for video. Just charging (at up to 60W) or data (at up to 480Mbps).
One end of the cable has the product's main selling point: a hardware data signaling switch. It's pretty self-explanatory: Flip the switch and no data transfer is allowed, only charging.
I know Android's USB preferences says that "no data transfer" is an option, but it's actually an inaccurate descriptor. If it truly meant that no data was allowed, then ADB/USB debugging wouldn't work in this mode (but it does).
Android DOES support disabling USB data signaling, but it's:
1) Only possible on Android 12+
2) Requires USB HAL 1.3+
You can check the HAL version with this command:
Even if your device does support this, there's no user-facing toggle. All the APIs are available through Device Policy Manager, which is used to manage enterprise devices. I had to use Google's TestDPC app to test this.
Even though Android doesn't provide an easily accessible way to disable USB data signaling, should you buy a cable that can disable it at a hardware level? It's really up to you, as it's more about peace of mind than actually protecting you from a serious threat.
"Juice jacking" is more of a theoretical than actual issue. (Some great articles by KrebsonSecurity & ArsTechnica.) But if you just want to plug your phone in anywhere without worry, then maybe it's worth it to you.
The OSOM Privacy Cable normally costs $29.99 but is on sale for $23.99 until EOD on Amazon (non-affiliate link). It's a nice, braided cable albeit relatively expensive if you don't care about the data blocker switch. But again, it's up to you.
OSOM sent me a cable to check out, but no this post isn't sponsored. The cable is 1m/5ft in length and supports USB 2.0 data transfer rates. Sadly, no USB 3.0 means there's not enough bandwidth for DP Alt. Mode, so you can't use this for video. Just charging (at up to 60W) or data (at up to 480Mbps).
One end of the cable has the product's main selling point: a hardware data signaling switch. It's pretty self-explanatory: Flip the switch and no data transfer is allowed, only charging.
I know Android's USB preferences says that "no data transfer" is an option, but it's actually an inaccurate descriptor. If it truly meant that no data was allowed, then ADB/USB debugging wouldn't work in this mode (but it does).
Android DOES support disabling USB data signaling, but it's:
1) Only possible on Android 12+
2) Requires USB HAL 1.3+
You can check the HAL version with this command:
adb shell svc usb getUsbHalVersionEven if your device does support this, there's no user-facing toggle. All the APIs are available through Device Policy Manager, which is used to manage enterprise devices. I had to use Google's TestDPC app to test this.
Even though Android doesn't provide an easily accessible way to disable USB data signaling, should you buy a cable that can disable it at a hardware level? It's really up to you, as it's more about peace of mind than actually protecting you from a serious threat.
"Juice jacking" is more of a theoretical than actual issue. (Some great articles by KrebsonSecurity & ArsTechnica.) But if you just want to plug your phone in anywhere without worry, then maybe it's worth it to you.
The OSOM Privacy Cable normally costs $29.99 but is on sale for $23.99 until EOD on Amazon (non-affiliate link). It's a nice, braided cable albeit relatively expensive if you don't care about the data blocker switch. But again, it's up to you.
π21π6π€1
Google Play has just announced a couple of new policies. Here's a summary of what they announced:
1) A new blockchain-based content policy that states that devs must complete a declaration for apps that enable users to transact blockchain-based digital content. Additional requirements apply for NFT gamification. Google's blog post on this particular change.
2) Apps that run "On-device Android Containers" will be required to respect the new REQUIRE_SECURE_ENV flag, indicating that they don't want to be run in an On-device Android Container.
I believe this refers to apps like Virtual Android and VMOS on Google Play, which run Android in a container. Google believes apps should be able to opt out of running in containers, hence this new flag.
3) New guidelines to their Deceptive Behavior policy to provide guidance on "non-transparent behavior." Basically, Google's making it clearer what they mean when they say developers can't engage in non-transparent behavior. Devs must make their app's functionality clear to users.
4) Expanded verification: when you create a Play Console account for an organization, you'll need to provide a D-U-N-S number. Further, Google will share more developer details on your app's store listing page.
This will roll out starting August 31 for anyone creating a new Play Console developer account. More details will be shared in October for existing developers. Google's blog post.
5) All apps that offer financial features must complete the declaration form. These apps may need to submit supporting documentation as well. This takes effect August 31.
6) The Request Install Package Permission policy has been expanded to allow companion apps used to sync Android phones to wearables or IoT devices.
1) A new blockchain-based content policy that states that devs must complete a declaration for apps that enable users to transact blockchain-based digital content. Additional requirements apply for NFT gamification. Google's blog post on this particular change.
2) Apps that run "On-device Android Containers" will be required to respect the new REQUIRE_SECURE_ENV flag, indicating that they don't want to be run in an On-device Android Container.
I believe this refers to apps like Virtual Android and VMOS on Google Play, which run Android in a container. Google believes apps should be able to opt out of running in containers, hence this new flag.
3) New guidelines to their Deceptive Behavior policy to provide guidance on "non-transparent behavior." Basically, Google's making it clearer what they mean when they say developers can't engage in non-transparent behavior. Devs must make their app's functionality clear to users.
4) Expanded verification: when you create a Play Console account for an organization, you'll need to provide a D-U-N-S number. Further, Google will share more developer details on your app's store listing page.
This will roll out starting August 31 for anyone creating a new Play Console developer account. More details will be shared in October for existing developers. Google's blog post.
5) All apps that offer financial features must complete the declaration form. These apps may need to submit supporting documentation as well. This takes effect August 31.
6) The Request Install Package Permission policy has been expanded to allow companion apps used to sync Android phones to wearables or IoT devices.
π16β€1π1
Mishaal's Android News Feed
Google Play has just announced a couple of new policies. Here's a summary of what they announced: 1) A new blockchain-based content policy that states that devs must complete a declaration for apps that enable users to transact blockchain-based digital content.β¦
7) The declaration form for apps that target Android 14 and above to declare foreground services for appropriate use cases will now be available in October, and you'll have until Jan. 31, 2024 to receive feedback and make adjustments.
8) Starting August 2, 2023, all new apps must use Play Billing Library v5 or newer. By Nov. 1, all updates to existing apps must use v5 or newer. Apps that target Android 14 will need to update to Play Billing Library v5.2.1 or 6.0.1 or higher.
Google Play PolicyBytes - July 2023 policy updates | Policy announcement: July 12, 2023
8) Starting August 2, 2023, all new apps must use Play Billing Library v5 or newer. By Nov. 1, all updates to existing apps must use v5 or newer. Apps that target Android 14 will need to update to Play Billing Library v5.2.1 or 6.0.1 or higher.
Google Play PolicyBytes - July 2023 policy updates | Policy announcement: July 12, 2023
YouTube
Google Play PolicyBytes - July 2023 policy updates
Theresa, Product Marketing Manager for Android and Google Play, shares important updates from our July 2023 Google Play policy announcements.
Chapters:
00:00 - Introduction
00:42 - Play Console Requirements - Expanded verification
02:33 - On-device Androidβ¦
Chapters:
00:00 - Introduction
00:42 - Play Console Requirements - Expanded verification
02:33 - On-device Androidβ¦
π14
This media is not supported in your browser
VIEW IN TELEGRAM
Google Chrome is improving how drag-and-drop works on Android.
Soon, you'll be able to:
1) Drag & drop a tab between Chrome windows
2) Tear a tab out to a new window
3) Drag URLs, text, and images into the omnibox to start a search
#1 & 2 are shown in the above video.
For context, back in October 2022, Chrome for Android gained the ability to drag and drop content out of the browser to other apps like Gmail, Photos, or Keep. These changes improve the experience of dragging content into Chrome.
Android 14 makes it possible to navigate between apps while dragging and dropping items, but Chrome currently doesn't support pasting text/links/images into the omnibox this way unless you're on the new tab page.
Sources: [1] [2] [3]
Soon, you'll be able to:
1) Drag & drop a tab between Chrome windows
2) Tear a tab out to a new window
3) Drag URLs, text, and images into the omnibox to start a search
#1 & 2 are shown in the above video.
For context, back in October 2022, Chrome for Android gained the ability to drag and drop content out of the browser to other apps like Gmail, Photos, or Keep. These changes improve the experience of dragging content into Chrome.
Android 14 makes it possible to navigate between apps while dragging and dropping items, but Chrome currently doesn't support pasting text/links/images into the omnibox this way unless you're on the new tab page.
Sources: [1] [2] [3]
π¨βπ»25π₯12π5β2
ICYMI: the Amazon Appstore on Windows 11 is now generally available for all developers. This means anyone can submit their app to the Amazon Appstore for users with the Windows Subsystem for Android (WSA) to download.
WSA is how I currently post to Threads* from my PC. The Threads app isn't available on the Amazon Appstore, though, so I had to sideload the APK. A program called WSA Tools makes that easy, but you can also just do
The latest version of WSA also makes it easy to share files between your PC's local storage and Android. Any files in
WSA is pretty niche right now, but it's yet another (albeit one that's not Google endorsed) large screen Android platform to optimize for, alongside tablets, book-style foldables, Chromebooks, and Play Games for PC.
*Just to warn you, there are some strange bugs when using the Threads app on WSA, including the fact that videos you upload get flipped upside down. This has also been happening with the Instagram app, apparently. That WSA now indexes your entire home directory can also be problematic, especially if you've got tons of files and you're dealing with an app that doesn't use the system file picker/photo picker (like Threads). You'll have to either move a lot of files or add .nomedia everywhere.
WSA is how I currently post to Threads* from my PC. The Threads app isn't available on the Amazon Appstore, though, so I had to sideload the APK. A program called WSA Tools makes that easy, but you can also just do
adb sideload.The latest version of WSA also makes it easy to share files between your PC's local storage and Android. Any files in
C:\Users\{profile} will be indexed by Android.WSA is pretty niche right now, but it's yet another (albeit one that's not Google endorsed) large screen Android platform to optimize for, alongside tablets, book-style foldables, Chromebooks, and Play Games for PC.
*Just to warn you, there are some strange bugs when using the Threads app on WSA, including the fact that videos you upload get flipped upside down. This has also been happening with the Instagram app, apparently. That WSA now indexes your entire home directory can also be problematic, especially if you've got tons of files and you're dealing with an app that doesn't use the system file picker/photo picker (like Threads). You'll have to either move a lot of files or add .nomedia everywhere.
π19π₯3
Chipolo is reportedly emailing customers who pre-ordered the Chipolo Point - the company's first tracker tag to support Google's upgraded Find My Device network - that their pre-orders will ship later than expected.
FMDN should launch soon, but it seems not even Chipolo is exactly sure when.
Source: feddit.uk/post/516129
FMDN should launch soon, but it seems not even Chipolo is exactly sure when.
Source: feddit.uk/post/516129
π23
In Android 14, app stores can request "update ownership" over an app they install. Doing so will cause a warning to be shown when the user tries to install an update to that app through another source.
Attached to this post is what that warning looks like. In this example, I installed the app "ExifEraser" through an app store called Accrescent on my Pixel running Android 14. I then downloaded the APK file for "ExifEraser" from GitHub and tried to sideload it through the Files by Google app. I was then met with this warning as shown above.
You can read more about Android 14's update ownership mechanism here. I don't know if Google Play plans to implement this, but it'd be pretty simple for them to do (here's how Accrescent did it.)
Attached to this post is what that warning looks like. In this example, I installed the app "ExifEraser" through an app store called Accrescent on my Pixel running Android 14. I then downloaded the APK file for "ExifEraser" from GitHub and tried to sideload it through the Files by Google app. I was then met with this warning as shown above.
You can read more about Android 14's update ownership mechanism here. I don't know if Google Play plans to implement this, but it'd be pretty simple for them to do (here's how Accrescent did it.)
π38π₯5
Not everybody jumps to install the latest OS update when it's available. To help OEMs convince those users to update their devices, Google is inviting OEMs to implement an Android Upgrade Invite.
Android Upgrade Invite is a "user flow that showcases the key new features included in the current available major Android OS upgrade." The flow is "intended to help convince users to upgrade their device to the latest OS version."
eg. if a user is currently on Android 12 but an update to Android 13 is pending, OEMs can trigger the Android Upgrade Invite notification. Users tap the notification to see what the new OS update will offer them and can even install the update from the flow.
The notification can be triggered either automatically (on devices that use gOTA - Google's OTA service) when a major update is detected or manually through a broadcast/API use.
Android Upgrade Invite is part of Google Play Services, so it's only available on Android devices with Google Mobile Services (GMS).
OEMs can customize the Upgrade Invite to remove irrelevant features, update the language in the flow, or modify assets to match their branding.
Android Upgrade Invite is the counterpart to the Android Upgrade Party I talked about last year. Whereas Android Upgrade Party tells you about the OS update you just got, Upgrade Invite tells you about the new OS before you update to it.
Android Upgrade Invite is a "user flow that showcases the key new features included in the current available major Android OS upgrade." The flow is "intended to help convince users to upgrade their device to the latest OS version."
eg. if a user is currently on Android 12 but an update to Android 13 is pending, OEMs can trigger the Android Upgrade Invite notification. Users tap the notification to see what the new OS update will offer them and can even install the update from the flow.
The notification can be triggered either automatically (on devices that use gOTA - Google's OTA service) when a major update is detected or manually through a broadcast/API use.
Android Upgrade Invite is part of Google Play Services, so it's only available on Android devices with Google Mobile Services (GMS).
OEMs can customize the Upgrade Invite to remove irrelevant features, update the language in the flow, or modify assets to match their branding.
Android Upgrade Invite is the counterpart to the Android Upgrade Party I talked about last year. Whereas Android Upgrade Party tells you about the OS update you just got, Upgrade Invite tells you about the new OS before you update to it.
π44β€9π4π€2π€‘2