From ec7847842a66a2cb9dc2b89efb4aca693871ab93 Mon Sep 17 00:00:00 2001 From: Abhishek Pokhriyal Date: Thu, 1 May 2025 16:42:58 +0530 Subject: [PATCH 1/2] introduce mobile dev resources --- README.md | 4 ++++ mobile-development/README.md | 4 ++++ mobile-development/ipa-generation/README.md | 1 + 3 files changed, 9 insertions(+) create mode 100644 mobile-development/README.md create mode 100644 mobile-development/ipa-generation/README.md diff --git a/README.md b/README.md index 48a3bd8..043adb8 100644 --- a/README.md +++ b/README.md @@ -31,6 +31,10 @@ - [Code Review](guidelines/code-review#guidelines-for-conducting-code-review) - [Blogs](guidelines/blog#guidelines-for-writing-blogs) +### Mobile Development + +- [IPA Generation](mobile-development/ipa-generation) + ## Credits :raised_hands: Maintained by [ColoredCow](https://coloredcow.com). diff --git a/mobile-development/README.md b/mobile-development/README.md new file mode 100644 index 0000000..e671225 --- /dev/null +++ b/mobile-development/README.md @@ -0,0 +1,4 @@ +# 📱 Mobile Development + +Covers workflows, audit requirements, and app delivery practices for Android and iOS apps built with React Native, Flutter, etc. + diff --git a/mobile-development/ipa-generation/README.md b/mobile-development/ipa-generation/README.md new file mode 100644 index 0000000..550be36 --- /dev/null +++ b/mobile-development/ipa-generation/README.md @@ -0,0 +1 @@ +# Generating `.ipa` for iOS Audit From b31ea5f9e9034515b8607905cfe212c298bb4849 Mon Sep 17 00:00:00 2001 From: AbhishekNegi25 Date: Thu, 22 May 2025 16:25:26 +0530 Subject: [PATCH 2/2] updated ipa file generation process --- mobile-development/ipa-generation/README.md | 54 ++++++++++++++++++++- 1 file changed, 53 insertions(+), 1 deletion(-) diff --git a/mobile-development/ipa-generation/README.md b/mobile-development/ipa-generation/README.md index 550be36..7ec9ab7 100644 --- a/mobile-development/ipa-generation/README.md +++ b/mobile-development/ipa-generation/README.md @@ -1 +1,53 @@ -# Generating `.ipa` for iOS Audit +# Generating `.ipa` Files for iOS Security Audit + +## Prerequisites +Before starting, ensure you have the following: +- **A Mac with Xcode installed** +- **Apple Developer account** (your client may provide access) +- **Access to the app’s source code** +- **A valid provisioning profile** (Development, Ad Hoc, or Distribution) +- **A working iOS app build** (via `react-native run-ios` or Xcode) + +--- + +## Step 1: Archive the App in Xcode +1. **Open the iOS project** in Xcode. +2. **Select a physical device** (not a simulator) from the top device dropdown. +3. **Set Build Configuration to `Release`.** +4. From the menu, navigate to: + `Product > Archive` +5. Wait for Xcode to complete the build and archiving process. + +--- + +## Step 2: Export the `.ipa` File +1. After archiving, the **Organizer window** will open automatically. + - If it doesn’t, manually open it via: + `Window > Organizer` +2. In the Organizer: + - Select your app archive. + - Click **`Distribute App`**. +3. Choose the appropriate option: + - **Development** (for debugging) + - **Ad Hoc/Distribution** (for release testing) +4. Follow the export steps and click **`Next`** until prompted. +5. Click **`Export`** and save the `.ipa` file. + +--- + +## Step 3: Share the `.ipa` with the Auditor +After exporting, the folder will contain: +- `MyApp.ipa` – the app binary +- `DistributionSummary.plist` – export metadata +- `ExportOptions.plist` – export configuration +- `Packaging.log` – build process log + +### Uploading Instructions: +- **Upload the `.ipa` to secure cloud storage** (e.g., Google Drive, Dropbox, OneDrive). +- **Avoid random file-sharing links**—ensure sharing permissions are set to: + - **`Anyone with the link can view/download`** +- Optionally, **password-protect the folder or link** if sensitive. + +--- + +> **Note:** For security, avoid sending `.ipa` files via email or unencrypted channels. \ No newline at end of file