PUNK HOUSE: A technical duo creating software for interesting new tech plays. Most recently built the software from scratch @ Backbone (https://playbackbone.com — featured on Forbes, TC, Verge, etc. and backed by the biggest names in gaming & entertainment) and co-created Winno (https://apple.co/winno — featured 2x as Apple's App Of The Day). Have worked on frontend & backend for Snackpass, Grab, NUGGS, Stanford, Yale, Butterfly, Singapore Post, and more. Independently published an AI blog (https://AYearOfAI.com) with 300,000+ reads, featured on a16z's AI primer; and created a CryptoKitties inspired Ethereum gaming platform (https://CryptoBets.cc).
i mean, they offer FB sign in in the app, so the FB SDK is bundled with the app binary. looks like the mere presence of the library is causing crashes. someone on a related GH thread noted they commented out the code invoking the FB SDK but the issue remained.
Yeah these SDKs are siphoning off data without authorization like your location, songs you listen to and who knows what else (eg other processes or apps running on your phone). Eg the latest iOS exploit allows any app to get access to all SMS data.
Tech companies of today trample upon individual privacy openly. Amazing!
i'm by a longshot no facebook fan but... are you sure the SDK can actually siphon out what songs you listen or your location from the app it's sandboxed in (which, BTW, is in its own sandbox from an iOS system POV, and also has its own set of permissions)?
if (restrictiveParams[eventName] as! [String: Any])["test"] != nil
In Swift, now hopefully you wouldn't write this code but it's not entirely unlikely too. In fact the above Objective-C snippet is one of the few cases where Objective-C's forgiving `nil` behaviour doesn't save you from a crash.
Well the reason FB/Foursquare/Google etc add these to 3rd party apps is so they can get data. Example if you visit a website which has a Facebook like button, your browser fetches the js files/which maybe even makes an API call to let FB know your IP (and hence location). All this data is fed to the giant system that feeds you ads.
Adding their SDK to other apps/sites (even if there is no user facing need) is a common strategy used by most big companies to get data. In return the app that puts in the SDK gets $ from the company.
You have no idea what you're talking about. Apps use the Facebook library because a good portion of end-users want to be able to login with a Facebook button --or Google, or whatever that doesn't require them to create a user/password account. It's just that simple.
I think he's talking in general. I worked at Spotify for a while and I can tell you the only reason they have the FB SDK bundled is to provide login.
They dont use FB for any tracking or attribution at all, for that they have other frameworks. They are aware of the FB SDK misbehaving in some cases and do take steps to prevent it.
Yes, requiring the SDK to implement Facebook Login is the decision that's being criticized. Facebook encourages SDK usage obviously for the data collection it enables, but even they provide an OAuth-only login flow that doesn't require the SDK at all: https://developers.facebook.com/docs/facebook-login/manually...
Then if this can be fixed by a server side change as suggested below, that's worrisome, since it suggests it is communicating with FB even if you don't invoke it.
the real question though is if the library is not even imported into the main app and just left hanging around, linked, would it still crash? i'd be curious to know
Hey guys, one of the makers of Contra here, and we're super excited to launch Contra to the world!
Contra is a new way to get educated on any circumstance, be it a product comparison, news article, or current affair. Post two-sided topics, and acquire a well-rounded portfolio of opinions from multiple people! And if you're feeling strongly about something - go ahead and write your own opinion.
If you have any questions or feedback we'd love to hear it! Reach out to us!
PORTFOLIO: http://www.punkhouse.co // EMAIL: rohan@punkhouse.co
PUNK HOUSE: A technical duo creating software for interesting new tech plays. Most recently built the software from scratch @ Backbone (https://playbackbone.com — featured on Forbes, TC, Verge, etc. and backed by the biggest names in gaming & entertainment) and co-created Winno (https://apple.co/winno — featured 2x as Apple's App Of The Day). Have worked on frontend & backend for Snackpass, Grab, NUGGS, Stanford, Yale, Butterfly, Singapore Post, and more. Independently published an AI blog (https://AYearOfAI.com) with 300,000+ reads, featured on a16z's AI primer; and created a CryptoKitties inspired Ethereum gaming platform (https://CryptoBets.cc).