Search code examples
androidgoogle-playgoogle-play-consoleandroid-security

Notification from Google Play || Malicious Behavior or User Data policy || Intent Redirection

enter image description here

As mentioned in image my app is violating there policy but i've another app for the same which is for doctor's and that app is using the same libraries and almost everything similar to this app but still my doctor app is accepted without any violation

androidx.fragment.app.FragmentActivity.startActivityForResult and they are saying your startActivityForResult is responsible for this but i'm only calling this line for opening camera and gallery.

i've tried uploading my app multiple time's with upgraded gradle and there remediations available here https://support.google.com/faqs/answer/9267555 but still no success.

you can also refer below image for further details.

my gradle

buildscript {
    repositories {
        maven { url 'https://plugins.gradle.org/m2/' }
    }
    dependencies {
        classpath 'gradle.plugin.com.onesignal:onesignal-gradle-plugin:0.12.8'
    }
}
apply plugin: 'com.onesignal.androidsdk.onesignal-gradle-plugin'

repositories {
    maven { url 'https://maven.google.com' }
}
apply plugin: 'com.android.application'
apply plugin: 'kotlin-android'
apply plugin: 'kotlin-android-extensions'
apply plugin: 'com.google.firebase.crashlytics'

android {
    compileSdkVersion 29
    defaultConfig {
        applicationId "com.doctoronline.telehealth.patient"
        manifestPlaceholders = [
                onesignal_app_id               : "********-****-****-****-************",
                // Project number pulled from dashboard, local value is ignored.
                onesignal_google_project_number: "REMOTE"
        ]
        minSdkVersion 21
        targetSdkVersion 29
        versionCode 44
        versionName "1.0.24.1"
        testInstrumentationRunner "androidx.test.runner.AndroidJUnitRunner"
        vectorDrawables.useSupportLibrary = true
    }
    buildFeatures {
        viewBinding = true
    }
    buildTypes {
        release {
            minifyEnabled false
            proguardFiles getDefaultProguardFile('proguard-android.txt'), 'proguard-rules.pro'
        }
    }

    lintOptions {
        checkReleaseBuilds false
    }

    compileOptions {
        sourceCompatibility JavaVersion.VERSION_1_8
        targetCompatibility JavaVersion.VERSION_1_8

        kotlinOptions {
            jvmTarget = '1.8'
        }
    }
}

buildscript {
    repositories {
        mavenCentral()
        google()
    }
    dependencies {
        //noinspection GradlePluginVersion
        classpath 'com.android.tools.build:gradle:0.6.+'

    }
}
repositories {
    mavenCentral()

}

dependencies {
    implementation fileTree(include: ['*.jar'], dir: 'libs')
    implementation "org.jetbrains.kotlin:kotlin-stdlib-jdk8:$kotlin_version"
    implementation 'androidx.appcompat:appcompat:1.2.0'
    implementation 'androidx.legacy:legacy-support-v4:1.0.0'
    implementation 'com.google.android.material:material:1.1.0'
    implementation 'androidx.constraintlayout:constraintlayout:2.0.4'
    testImplementation 'junit:junit:4.12'
    androidTestImplementation 'androidx.test:runner:1.3.0'
    androidTestImplementation 'androidx.test.espresso:espresso-core:3.3.0'
    implementation 'de.hdodenhof:circleimageview:3.1.0'
    implementation 'org.java-websocket:Java-WebSocket:1.3.9'
    implementation 'com.android.volley:volley:1.1.1'
    implementation 'com.squareup.picasso:picasso:2.71828'
    implementation 'com.google.firebase:firebase-core:18.0.1'
    implementation 'org.webrtc:google-webrtc:1.0.28513'
    implementation 'com.payumoney.sdkui:plug-n-play:1.6.0'

    implementation 'com.google.firebase:firebase-analytics:18.0.1'
    implementation 'com.google.firebase:firebase-crashlytics:17.3.0'

    implementation 'com.flurry.android:analytics:11.6.0@aar'
    implementation 'com.github.bumptech.glide:glide:4.9.0'
    implementation('com.alimuzaffar.lib:pinentryedittext:1.3.10')
    implementation 'com.hbb20:ccp:2.3.2'
    implementation 'com.google.android.gms:play-services-auth:19.0.0'
    implementation 'com.google.android.gms:play-services-auth-api-phone:17.5.0'
    implementation 'com.koushikdutta.ion:ion:3.0.8'
    implementation 'com.wdullaer:materialdatetimepicker:4.2.3'
    implementation 'io.agora.rtc:full-sdk:3.0.0'
    api 'com.theartofdev.edmodo:android-image-cropper:2.8.0'

    //OneSignal
    implementation 'com.onesignal:OneSignal:3.14.1'

    implementation 'com.toptoche.searchablespinner:searchablespinnerlibrary:1.3.1'
    //Auto-Resizable Pixel
    implementation 'com.intuit.sdp:sdp-android:1.0.6'
    implementation 'com.intuit.ssp:ssp-android:1.0.6'

    //for new version updater
    implementation 'com.google.android.play:core:1.9.1'
}

apply plugin: 'com.google.gms.google-services'

Thanks in advance. enter image description here

Solution

  • In my case it was sms broadcast receiver, heres mail received from google after around a month of coordination with google play team they sent mw the details of the violation please take a look at the image attached below.

    enter image description here