Pre-launch security checklist: what do you do before making your app public?

Best Practices

The post about making sure your firestore rules are setup correctly made me think of other potential ways apps can expose data or be open to abuse.

So... you're getting ready to publish your app to the App & Play stores. What do you need to 100% verify you have ready from a security perspective? Let's share any checklist type items or todo's you have so our apps only show up in the news for good reasons! ๐Ÿ˜‰

Some of mine:

  • Firestore or other database is secured

  • API calls using keys are not being sent public/clear text

  • Firebase app check (if using) is working properly

6