Partnerkey Security Vulnerability in Truecaller SDK #6
Description
Description:-In the sample project of Truecaller SDK and in the Truecaller documentation the Partner key is added in the Android Manifest file, therefore it's required to keep it in the String.xml file.
Vulnerability:- This partner key is exposed if anyone reverse engineers the APK
Expected Behaviour:- Is there any implementation through which we can dynamically provide the PartnerKey to Truecaller SDK, it will add an extra layer of security to the PartnerKey