Android Intent Security Audit Skill

# Android Intent Security Audit Skill This skill is designed to audit Android app components for Intent security. It helps prevent Intent Redirection and unauthorized access by reviewing component configurations in AndroidManifest.xml and source code handling incoming Intents. ## Key Capabilities - Audits AndroidManifest.xml activities, services, receivers, and source code for Intent handling. - Identifies and prevents Intent Redirection and unauthorized access. - Provides guidelines for securing Android components and handling Intents safely. - Includes a glossary explaining key terms like Intent, Exported Component, Sticky Intent, Signature Permission, PendingIntent, ContentProvider, IntentSanitizer, and Intent Redirection. ## Example Use Cases - Securely launch internal activities/services within an app. - Prevent unauthorized access to sensitive data through Intent handling. - Ensure that exported components are properly secured. ## When to Use Use this skill when developing or auditing Android applications to ensure they are secure against Intent-based attacks. ## Setup and Dependencies - Android SDK with API Level 23 or higher. - AndroidX Core Library version 1.9.0 or higher. ## Limitations - Focuses on local inter-component and inter-app communication security. - Does not cover network security, web integration, or host-to-server security.