askill
flutter-security

flutter-securitySafety 100Repository

Security standards for Flutter applications based on OWASP Mobile.

flutter-securityHoangNguyen0403
197 stars
3.9k downloads
Updated 2/2/2026

Package Files

Loading files...
SKILL.md

Mobile Security

Priority: P0 (CRITICAL)

Standards for basic mobile security and PII protection.

Implementation Guidelines

  • Secure Storage: Use flutter_secure_storage for tokens/PII. Never use shared_preferences.
  • Hardcoding: Never store API keys or secrets in Dart code. Use --dart-define or .env.
  • Obfuscation: Always release with --obfuscate and --split-debug-info. Note: This is a deterrent, not cryptographic protection. For sensitive logic, move to backend.
  • SSL Pinning: For high-security apps, use dio_certificate_pinning.
  • Root Detection: Use flutter_jailbreak_detection for financial/sensitive applications.
  • PII Masking: Mask sensitive data (email, phone) in logs and analytics.

Reference & Examples

For SSL Pinning and Secure Storage implementation details: See references/REFERENCE.md.

Related Topics

common/security-standards | layer-based-clean-architecture | performance

Install

Download ZIP
Requires askill CLI v1.0+

AI Quality Score

92/100Analyzed 2/6/2026

A high-quality, actionable guide for Flutter security following OWASP standards. It includes specific package recommendations, CLI flags, and clear triggers.

100
95
95
85
90

Metadata

Licenseunknown
Version-
Updated2/2/2026
PublisherHoangNguyen0403

Tags

apisecurity