mirror of
https://github.com/PrivSec-dev/banking-apps-compat-report
synced 2024-11-09 16:31:32 -05:00
171 lines
6.1 KiB
YAML
171 lines
6.1 KiB
YAML
name: Submit your banking app report
|
|
description: Report a banking app's compatibility on GrapheneOS
|
|
title: "Replace this with [your_BankingApp - your_Country]"
|
|
labels: ["app report"]
|
|
body:
|
|
- type: markdown
|
|
attributes:
|
|
value: |
|
|
**Please remember this is for GrapheneOS only!**
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Is there an existing issue for this?
|
|
description: Please search to see if an issue already exists to avoid creating duplicates.
|
|
options:
|
|
- label: I have searched the existing issues
|
|
required: true
|
|
- type: input
|
|
id: version
|
|
attributes:
|
|
label: App name
|
|
description: What is the banking app called?
|
|
placeholder: BMO Mobile Banking
|
|
validations:
|
|
required: true
|
|
- type: input
|
|
id: app_link
|
|
attributes:
|
|
label: Link to app
|
|
description: Paste the download link (Play Store preferably) or tell us where to get the app if possible
|
|
placeholder: https://play.google.com/store/apps/details?id=com.bmo.mobile
|
|
validations:
|
|
required: true
|
|
- type: input
|
|
id: os
|
|
attributes:
|
|
label: App version
|
|
description: What version of the app did you test it with? (Settings → Apps → App → Version at the bottom)
|
|
placeholder: v1.3.3.7
|
|
validations:
|
|
required: true
|
|
- type: input
|
|
id: country
|
|
attributes:
|
|
label: Country of the app
|
|
description: Specify what country the app is for (it is assumed you're using it in the same country here)
|
|
placeholder: Canada
|
|
validations:
|
|
required: true
|
|
- type: input
|
|
id: build_number
|
|
attributes:
|
|
label: Build Number
|
|
description: What version of GrapheneOS are you currently using? (Settings → About phone → Build number)
|
|
placeholder: SP2A.220405.003.2022040400
|
|
validations:
|
|
required: true
|
|
- type: dropdown
|
|
id: select_device
|
|
attributes:
|
|
label: Device list
|
|
description: Which Pixel(s) have you tested this with? (Select one or multiple devices in dropdown menu)
|
|
multiple: true
|
|
options:
|
|
- Pixel 7 Pro
|
|
- Pixel 7
|
|
- Pixel 6a
|
|
- Pixel 6 Pro
|
|
- Pixel 6
|
|
- Pixel 5a
|
|
- Pixel 5
|
|
- Pixel 4a (5G)
|
|
- Pixel 4a
|
|
- Pixel 4 XL
|
|
- Pixel 4
|
|
- Pixel 3a XL (obsolete)
|
|
- Pixel 3a (obsolete)
|
|
- Pixel 3 XL (obsolete)
|
|
- Pixel 3 (obsolete)
|
|
validations:
|
|
required: true
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Profile app tested in
|
|
description: Which user profile was this tested on?
|
|
options:
|
|
- label: Main user profile
|
|
- label: Secondary user profile
|
|
- label: I used a work profile device manager app (Please mention more details about it down below like the app)
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Google Play installed
|
|
description: Do you have Google Play installed in the profile you tested in?
|
|
options:
|
|
- label: Installed
|
|
- label: Not installed
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Google Play services Network permission revoked?
|
|
description: If you have Google Play installed, was the Network permission for Google Play services revoked?
|
|
options:
|
|
- label: Revoked
|
|
- label: Not revoked
|
|
- label: I did not have Google Play services installed
|
|
- type: checkboxes
|
|
attributes:
|
|
label: SafetyNet Enforcement
|
|
description: Does this app enforce SafetyNet? (If you can't use it even with Google Play installed + native code debugging enabled, it may be enforcing SafetyNet ctsProfileMatch)
|
|
options:
|
|
- label: Enforced
|
|
- label: Not enforced
|
|
- label: Unsure
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Native code debugging
|
|
description: Was native code debugging enabled or disabled during the testing? (Owner Profile → Settings → Security → Enable native code debugging)
|
|
options:
|
|
- label: Enabled
|
|
- label: Disabled
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Exploit protection compatibility mode
|
|
description: Was per-app exploit protection compatibility mode enabled or disabled during the testing? (Settings → Apps → App → Advanced)
|
|
options:
|
|
- label: Enabled
|
|
- label: Disabled
|
|
- type: checkboxes
|
|
attributes:
|
|
label: Stock OS compatibility
|
|
description: Does this app work on stock OS?
|
|
options:
|
|
- label: Works
|
|
- label: Does not work
|
|
- label: Not tested
|
|
- type: textarea
|
|
id: description
|
|
attributes:
|
|
label: Description of the app's functionality
|
|
description: |
|
|
What happens when you use the app? What tasks do work and don't work? What is the expected outcome of each thing you do? Did you test any other configurations and setups? Please mention all the steps to reproduce any issues. Do not leave out any information.
|
|
|
|
Tip: You can attach images by clicking this area to highlight it and then dragging files in.
|
|
validations:
|
|
required: true
|
|
- type: textarea
|
|
id: extra_notes
|
|
attributes:
|
|
label: Are there any extra notes you think users should know about?
|
|
description: |
|
|
Did you do any workarounds other users should know that aren't listed here?
|
|
|
|
Tip: You can attach images by clicking this area to highlight it and then dragging files in.
|
|
validations:
|
|
required: false
|
|
- type: textarea
|
|
id: adb_logs
|
|
attributes:
|
|
label: ADB logcat of the app if necessary
|
|
description: |
|
|
If you have any logs that come up that the app is creating relevant to anything mentioned like app crashes, SafetyNet, etc, please send a GitHub Gist of them. Do not send a bug report ZIP to us. They may expose sensitive information. If you wish to send a bug report ZIP, please do so directly to a GrapheneOS project member or developer.
|
|
|
|
Tip: You can attach images by clicking this area to highlight it and then dragging files in.
|
|
value: |
|
|
...
|
|
render: systemverilog
|
|
validations:
|
|
required: false
|
|
- type: markdown
|
|
attributes:
|
|
value: |
|
|
Thank you for taking the time to fill out this report.
|