I've tried it. nushell works for me only with the "-c" option, otherwise I get "Error: I/O error: Function not implemented (os error 38)". Probably the prompt function
yes. (It's not really the 'root' user, but it trusts blindly and can do things such as installing apps without user confirmation.). In my other blog post about gms, the JS bridges would be running in the privileged scope.
You agreed to this in Google's privacy policy when installing Android.
Gitleaks regexes are fairly accurate. For example, the regex to find a GitHub PAT is "ghp_[0-9a-zA-Z]{36}" which mean it has a specific number (36+4) of characters from specific group (alphabet+number). And I try to filter out the obvious non-secrets (like 'abcd','xxxx' and '1234'). However, as I stated in the article, most of the data is not actionable: most people just revoke the token, use an old one, change some random letters, etc.
Very cool ! To ensure there is only one JavaScript interface, I edit hackability to be without popups and print, then host it. Your tool sound easier. https://portswigger-labs.net/hackability
Me too, I have a folder in my android called "breakthrough" and it has 20 applications, including Zoom, waze, Spotify, and so on... apparently, now, it should also include Google and maybe even the Settings :)
I checked that, and it's actually possible : Spotify → your plan → see available plans →click on some plan → click "advertising" → find "reCAPTCHA" and click on "Google Privacy Policy"→scroll down until "google" → you get it :)