{"id":"dwisiswant0-apkleaks","name":"apkleaks","af_score":46.0,"security_score":39.8,"reliability_score":23.8,"what_it_does":"APKLeaks is a CLI tool that statically scans Android APK files to find potentially sensitive information such as URIs/endpoints and secrets, using the jadx disassembler (and other tooling) plus configurable regex-based patterns.","best_when":"You want a local, repeatable static scan of APKs for common secret/endpoint patterns and can review results for false positives.","avoid_when":"You need high-confidence results with minimal false positives, or you require dynamic/behavioral assurance rather than static pattern matching.","last_evaluated":"2026-03-29T14:57:24.313465+00:00","has_mcp":false,"has_api":false,"auth_methods":[],"has_free_tier":false,"known_gotchas":["Relies on external disassembler (jadx) presence; behavior may differ if jadx needs to be downloaded","User-controlled disassembler arguments (-a/--args) could change output and potentially affect stability","If -o is omitted, output filename may be random, complicating automated pipelines"],"error_quality":0.0}