Skip to content

Commit a1cbb94

Browse files
jcalixtejcalixte
authored
docs: update deadlink for sslpinning (#22)
1 parent e9a8e7b commit a1cbb94

File tree

1 file changed

+15
-5
lines changed

1 file changed

+15
-5
lines changed

README.md

Lines changed: 15 additions & 5 deletions
Original file line numberDiff line numberDiff line change
@@ -2,10 +2,20 @@
22

33
<p align="center">Easily implement usual security measures in React Native Expo apps</p>
44

5-
- [SSL public key pinning](#ssl-pinning)
6-
- [Certificate transparency](#certificate-transparency)
7-
- [Prevent "recent screenshots"](#prevent-recent-screenshots)
8-
- [Safe Keyboard Detector](#safe-keyboard-detector)
5+
- [Installation and setup](#installation-and-setup)
6+
- [Features](#features)
7+
- [SSL Pinning](#ssl-pinning)
8+
- [Configuration](#configuration)
9+
- [Pinning subdomains](#pinning-subdomains)
10+
- [Generating the public key hashes](#generating-the-public-key-hashes)
11+
- [Testing](#testing)
12+
- [Certificate transparency](#certificate-transparency)
13+
- [Configuration](#configuration-1)
14+
- [Prevent "recent screenshots"](#prevent-recent-screenshots)
15+
- [Configuration](#configuration-2)
16+
- [Safe Keyboard Detector](#safe-keyboard-detector)
17+
- [Contributing](#contributing)
18+
- [👉 About BAM](#-about-bam)
919

1020
> **⚠️ Disclaimer**<br/>
1121
> This package is intended to help implement a few basic security features but does not in itself guarantee that an app is secure.<br/>
@@ -54,7 +64,7 @@ yarn expo prebuild
5464

5565
## SSL Pinning
5666

57-
> **🥷 What's the threat?** Attackers intercepting your app's network requests and accessing private data or sending malicious responses. [More details](https://mas.owasp.org/MASTG/General/0x04f-Testing-Network-Communication/#restricting-trust-identity-pinning)
67+
> **🥷 What's the threat?** Attackers intercepting your app's network requests and accessing private data or sending malicious responses. [More details](https://github.com/OWASP/owasp-mastg/blob/master/Document/0x04f-Testing-Network-Communication.md#restricting-trust-identity-pinning)
5868
5969
This package implements [public key pinning](https://cheatsheetseries.owasp.org/cheatsheets/Pinning_Cheat_Sheet.html#public-key) using [TrustKit](https://github.com/datatheorem/TrustKit) on iOS and the certificate pinner included in OkHttp on Android.
6070

0 commit comments

Comments
 (0)