Open kamiranoff opened 4 years ago
The problem with this library is security. You shouldn't be putting any secret keys in apps, it should all be on your server. This library can leak your credentials. Instead you should have presigned url generated on your server which you should be able to pass to this package to upload your file. This is a feature I am looking to implement...if the author can provide feedback on this. it would be fantastic.
We are submitting our app to google play and we got this message form Google play saying:
Your app(s) expose Amazon Web Services credentials.
This is how we are using the library:
Are we using the library in the wrong way?