nsc-allows-plaintext-traffic
xmlns:tools="http://schemas.android.com/tools" tools:ignore="InsecureBaseConfiguration"
as parameters to your <network-security-config>
)nsc-pinning-without-backup
nsc-pinning-without-expiration
nsc-allows-user-ca-certs
xmlns:tools="http://schemas.android.com/tools" tools:ignore="AcceptsUserCertificates"
as parameters to your <network-security-config>
)nsc-allows-user-ca-certs-for-domain
$DOMAIN
. Evaluate if this is necessary for your app, and disable it if appropriate. (To hide this warning, set xmlns:tools="http://schemas.android.com/tools" tools:ignore="AcceptsUserCertificates"
as parameters to your <network-security-config>
)manifest-usesCleartextTraffic-true
manifest-usesCleartextTraffic-ignored-by-nsc
android:usesCleartextTraffic
and Network Security Config. The usesCleartextTraffic
directive is ignored on Android 7 (API 24) and above if a Network Security Config is present.