Have you found pre-registration useful on the Google Play Store? Was it worth the hassle? Do ppl really sign? I have made a landing page for my app and started to publish something little on TikTok. Can't afford to market, just hoping for some organic traction.
Have you found pre-registration useful on the Google Play Store? Was it worth the hassle? Do ppl really sign? I have made a landing page for my app and started to publish something little on TikTok. Can't afford to market, just hoping for some organic traction.
Does any of you make code quality and security checks? I am obsessed about them. The problem is that when I do all of them (quite often) it takes a VERY long time. Made some scripts so it's easier. Wouldn't remember otherwise. Here's what I have: lc/lint-check: ktlintCheck, detekt and Android Lint. ac/android-check: Android security checks (semgrep, mobsfscan and DeepSec custom report). dc/dependency-check: gradle dependency verification, OSV-Scanner and OWASP Dependency Check. ss/secret-scan: gitleaks, TruffleHog, and semgrep secrets. ds/deep-sec: DeepSec scan, report, custom checks and revalidation. ms/mobsf-scan: MobSF/mobsfscan Android static scan.
os/osv-scan: OSV-Scanner source scan. ql/codeql-check: github CodeQL status (github CLI). db/dependabot-check: Dependabot configuration and Dependabot alerts (github CLI). pc/pmd-check: PMD CPD duplicate scan. cs/compose-stability: skydoves compose stability analyzer stabilitycheck. cr/compose-rules: mrmans0n compose-rules (ktlint/detekt paths). ga/google-android-security: Google Android security lints (Android lint). sc/security-check: combined dependency, secret, and semgrep security scan ('-Full' also adds android check). sonar: project-specific sonarqube/sonarcloud run if the project has 'tools/sonar.ps1'.