For the out of the loop, but also lazy:
Android app that reveals installed apps which may be leaking your location data.
this post was submitted on 19 Feb 2025
145 points (99.3% liked)
Open Source
34453 readers
183 users here now
All about open source! Feel free to ask questions, and share news, and interesting stuff!
Useful Links
- Open Source Initiative
- Free Software Foundation
- Electronic Frontier Foundation
- Software Freedom Conservancy
- It's FOSS
- Android FOSS Apps Megathread
Rules
- Posts must be relevant to the open source ideology
- No NSFW content
- No hate speech, bigotry, etc
Related Communities
Community icon from opensource.org, but we are not affiliated with them.
founded 5 years ago
MODERATORS
"Leak"
Bro the data is being stolen for fucking criminals. Call this crime what is.
You got threat actors using contract law in bad faith to exploit stupid, poorly educated peasants
But hey good thing they got nothing to hide ๐คก
Additional info for the lazy: the name of the company is "Gravy Analytics", hence the name "Gravy Scanner" for this app. It's a large data broker, and they don't bother with pesky little details like "informed consent".
Anyway, they got hacked a month ago, and the hackers threatened to publicly release all the data.
Developer here. I hacked this app together after reading the story and didn't touch it since, hence why it's not very polished.
I've just released 0.2 which makes it clearer when no affected apps are installed.
Good luck and thanks
Outlook being on that list is crazy.
Office 365 too
All kind of sh*t must be expected from closed source apps tbh
I get a blank screen. Broken or does that mean I have none? On GrapheneOS
Most likely, that means you're clean. On mine, the output is just a white screen with a list of the affected apps... Clicking on one of them takes me to that app's settings.
It does that one thing, with no explanations or instructions, so it wouldn't surprise me to learn that it doesn't show a message to indicate that nothing was found.
Yup, Dev replied in another comment and updated it.
Yay for team blank screen... I think?
It means you have none
I guess one could install an impacted app to test.
Did you try?
I did. The app works.
If you have an impacted app installed, it'll flag it.
If you don't, the screen is blank (white for me).
App could use a "if/else" type statement, where if none are found it'll say "None found".
I thought the same too, but iirc the developer said he released an update that contains this
We're team "fuck no!". Welcome to paradise.
Same question, on vanilla android.
I think it means you're clean. I use GOS, it gave me one entry (Viber)
I've got several hits, but none of them have permission to request my location. If I understand the README correctly, that should mean I'm safe, right?
Location could also imply IP address-based location, and not necessarily GPS.
True, but at that point, every website I'll ever visit and have visited in the past might be a threat, so that doesn't really matter too much to me.
every website Iโll ever visit and have visited in the past might be a threat
In that sense, you are right. However, there are ways to cloak your IP address and location.
Privacy is a massive rabbit hole depending on what threat you are trying to protect yourself from. Sometimes, the effort (and the stuff that breaks along the way) isn't worth it.
If location implies an area extending 300ย km in either direction, does it really matter? To most people, not really.
Ugh flightradar24 is a hit. Really??
I don't need this app to know flightradar is a risk.
Most British app ever made
I was surprised to see SoundCloud on the list, now I have to recreate my music list in newpipe ๐
Or go back to the good old days and download/rip what you like to .mp3, .ogg, or .flac depending on your peference.
I have several thousand songs on my phone that I can listen to without the need for an internet connection, subscription fees, accounts, or anything.
There are tons of good FOSS local music player apps out there that you should check out. I use Auxio from the F-Droid store but have used others in the past.
On desktop, I use Elisa.
You can make sure your library is always up to date with your desktop by using syncthing.
Thanks! I uninstalled everything it listed. Pluto.tv, outlook, and Sonic.
Welcome
Vampire survivors? Damn
Oh great, the Belgian good alternative for piece of shit Facebook marketplace is on there... 2dehands.
We can never have nice things...
Also Good Pizza Great Pizza ๐ข
This is actually a really handy app!