Question on permissions

[IzzySoft]

I've received warnings from a scanner here at IoD:

! repo/com.shuyu.gsygithub.gsygithubappflutter_55.apk declares sensitive permission(s): android.permission.READ_EXTERNAL_STORAGE*
! repo/com.shuyu.gsygithub.gsygithubappflutter_55.apk contains signature block blobs: 0x504b4453 (DEPENDENCY_INFO_BLOCK; GOOGLE)

READ_EXTERNAL_STORAGE was granted implicitly (as the asterisk indicated) as the app requests the write permission. Could you please clarify what that is needed for?

As for DEPENDENCY_INFO_BLOCK, that can easily be avoided with a tiny adjustment in your build.gradle:

android {
    dependenciesInfo {
        // Disables dependency metadata when building APKs.
        includeInApk = false
        // Disables dependency metadata when building Android App Bundles.
        includeInBundle = false
    }
}

For some background: that BLOB is supposed to be just a binary representation of your app's dependency tree. But as it's encrypted with a public key belonging to Google, only Google can read it – and nobody else can even verify what it really contains. More details can be found e.g. here: Ramping up security: additional APK checks are in place with the IzzyOnDroid repo.

Thanks in advance!

[CarGuo]

Because before this, the program had saveImage related logic, but it is currently blocked in the relevant code.
For now, it can be removed

[IzzySoft]

Thanks!