cordova-plugin-iroot
Advanced tools
Use this plugin to add an extra layer of security for your app by detecting if the device was rooted (on android) or jailbreaked (on iOS).
cordova plugin add cordova-plugin-iroot
To avoid errors like
-canOpenURL: failed for URL: "cydia://package/com.example.package" - error: "This app is not allowed to query for scheme cydia"
don’t forget to add "cydia" in LSApplicationQueriesSchemes key of info.plist. Otherwise canOpenURL will always return false.
<key>LSApplicationQueriesSchemes</key>
<array>
<string>cydia</string>
</array>
// available => iOS + Android
IRoot.isRooted(successCallback, failureCallback);
// available => Android
IRoot.isRootedWithBusyBox(successCallback, failureCallback);
successCallback(result:boolean) is called with true if the device is Jailbroken/rooted, otherwise false.failureCallback(error:string) is called if there was an error determining if the device is Jailbroken/rooted.Based on:
git checkout -b my-new-feature)git commit -am 'Add some feature')git push origin my-new-feature)If the Cyanogenmod ROM is installed, the cyanogenmod.superuser activity may be in the com.android.settings package. This can be detected by listing the activities within com.android.settings.
Execute su and then id to check if the current user has a uid of 0 or if it contains (root). shell@android:/ $ su shell@android:/ # id uid=0(root) gid=0(root) groups=1003(graphics),1004(input),1007(log),1009(mount),1011(adb),1015(sdcard_rw),1028(sdcard_r)
If a device has been rooted, more often then not Busybox has been installed as well. Busybox is a binary that provides many common linux commands. Running Busybox is a good indication that a device has been rooted. root@android:/ # busybox df Filesystem 1K-blocks Used Available Use% Mounted on tmpfs 958500 32 958468 0% /dev tmpfs 958500 0 958500 0% /mnt/secure tmpfs 958500 0 958500 0% /mnt/asec tmpfs 958500 0 958500 0% /mnt/obb
FAQs
Jailbreak/Root Detection Plugin for Apache Cordova
The npm package cordova-plugin-iroot receives a total of 1,697 weekly downloads. As such, cordova-plugin-iroot popularity was classified as popular.
We found that cordova-plugin-iroot demonstrated a not healthy version release cadence and project activity because the last version was released a year ago. It has 1 open source maintainer collaborating on the project.
Did you know?
Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.
Research
Security News
Socket researchers found several malicious npm packages typosquatting Chalk and Chokidar, targeting Node.js developers with kill switches and data theft.
Security News
pnpm 10 blocks lifecycle scripts by default to improve security, addressing supply chain attack risks but sparking debate over compatibility and workflow changes.
Product
Socket now supports uv.lock files to ensure consistent, secure dependency resolution for Python projects and enhance supply chain security.