Apk Metainfo Warning

Question

I see the below error when I tried to verify, if the .apk (andriod application)is signed or not.

I\'m not sure what this error exactly means?

Is this raises

Answer 1

The signature of the APK guarantees that if a file is changed in the APK after it is signed, it can't be installed on an Android device (the signature would be invalidated).

The signature of the APK is stored in the META-INF directory of the APK, which means that if some other files are stored in the META-INF directory, they are not covered by the signature. The warning you see shows you some files in your APK that are in the META-INF directory not protected by the signature.

In practice, these files are not important, they're mostly versions of libraries you depend on, so even if someone modified those, it wouldn't have any impact on your app. That's why it's only a warning: those files in your APK can be modified by someone else while still pretending that the APK is signed by you, but those files don't really matter.

This is quite a common thing within APKs, so I wouldn't worry about it.