Android Security Analyzer

Static security analysis of Android application source code with 53 rules across manifest, Gradle, source, XML, and secret scanning.

Performs pattern-based static security analysis of Android project source files without requiring a build environment. Covers manifest analysis, Gradle configuration auditing, Java/Kotlin source code scanning, XML configuration review, and secret detection across 53 rules. Provides structured findings with CWE and OWASP Mobile Top 10 mappings, risk scoring, and actionable recommendations. Runs on Cloudflare Workers as a remote MCP endpoint.