From 12220c57351912da08e451eb2f900ea543da51b6 Mon Sep 17 00:00:00 2001
From: Jeroen Beckers <info@dauntless.be>
Date: Wed, 15 Jan 2025 14:19:50 +0100
Subject: [PATCH] Update MASWE-0002.md

---
 weaknesses/MASVS-STORAGE/MASWE-0002.md | 1 +
 1 file changed, 1 insertion(+)

diff --git a/weaknesses/MASVS-STORAGE/MASWE-0002.md b/weaknesses/MASVS-STORAGE/MASWE-0002.md
index 106db7b11e..3a70485dda 100644
--- a/weaknesses/MASVS-STORAGE/MASWE-0002.md
+++ b/weaknesses/MASVS-STORAGE/MASWE-0002.md
@@ -22,6 +22,7 @@ draft:
   - improperly configured FileProvider (Android)
   - Avoid the deprecated MODE_WORLD_WRITEABLE and MODE_WORLD_READABLE modes for IPC files, see https://developer.android.com/privacy-and-security/security-tips#internal-storage. They don't provide the ability to limit data access to particular applications, and they don't provide any control of data format. If you want to share your data with other app processes, consider using a content provider instead, which offers read and write permissions to other apps and can make dynamic permission grants on a case-by-case basis.
 status: draft
+  - Keychain items protected with weak protections such as kSecAttrAccessibleAlways, kSecAttrAccessibleAfterFirstUnlock, kSecAttrAccessibleWhenUnlocked
 
 ---