CodeAnt AI home pagelight logodark logo
  • Support
  • Dashboard
  • Dashboard
  • Join Community
Start Here
  • What is CodeAnt?
Setup
  • Github
  • Bitbucket
  • Gitlab
  • Azure Devops
Pull Request Review
  • Features
  • Customize Review
  • Quality Gates
  • Integrations
Scan center
  • Code Security
  • Code Quality
  • Cloud Security
  • Engineering Productivity
Integrations
  • Jira
  • Test Coverage
  • CI/CD
IDE
  • Setup
  • Review
  • Enhancements
Rule Reference
  • Compliance
  • Anti-Patterns
  • Code Governance
  • Infrastructure Security Database
  • Application Security Database
    • Apex
    • Bash
    • C
    • Clojure
    • Cpp
    • Csharp
    • Dockerfile
    • Elixir
    • Fingerprints
    • Generic
    • Go
    • Html
    • Java
    • Javascript
    • Json
    • Kotlin
    • Ocaml
    • Php
    • Problem-based-packs
    • Python
    • Ruby
    • Rust
    • Scala
    • Solidity
    • Swift
      • Biometrics-and-auth
        • Acl-changes
        • Keychain-always-accessible
          • Keychain accessible always
        • Keychain-sync
        • Local-biometrics
        • Missing-user-auth
        • No-verify
        • Pass-fallback
      • Commoncrypto
      • Cryptoswift
      • Insecure-communication
      • Lang
      • Pathtraversal
      • Sql
      • Sqllite
      • Webview
      • Webview
    • Terraform
    • Typescript
    • Yaml
Resources
  • Open Source
  • Blogs
Keychain-always-accessible

Keychain accessible always

keychain-accessible-always

The application was observed to store keychain items with the accessibility type kSecAttrAccessibleAlways meaning that the data is not sufficiently protected at rest. Ideally, the application should use kSecAttrAccessibleWhenUnlocked to configure the data to be accessible only when the user has unlocked the screen.
Likelihood: LOW
Confidence: HIGH
CWE:
- C
- W
- E
- -
- 2
- 7
- 2
- :
-

- L
- e
- a
- s
- t
-

- P
- r
- i
- v
- i
- l
- e
- g
- e
-

- V
- i
- o
- l
- a
- t
- i
- o
- n
Keychain acl allows biometry changesKeychain device sync
twitterlinkedin
Powered by Mintlify
Assistant
Responses are generated using AI and may contain mistakes.