Google is cracking down on apps that can see apps installed on your device

---

Google is no stranger to establishing the law on Android when it comes to what permissions developers are allowed to use. The company is cracking down again and is now focusing on developers who needlessly request a list of apps installed on a user’s device.

XDA Developers says Google has made changes to its Developer Program policy, making it harder for apps to see what other apps are installed. Specifically, Google will only allow the so-called QUERY_ALL_PACKAGES authorization for an application if it is part of basic functionality, indicating that a user’s list of installed applications is “personal and sensitive information”. This permission takes effect if a developer targets API level 30 (Android 11).

“Authorized use includes; search for devices, antivirus applications, file managers and browsers, ”reads an excerpt from the amended policy identified by the point of sale. The amended policy also notes that financial applications such as bank customers and digital wallets would receive this permission “only” for security purposes.

More reading: Android 11 Improves Privacy – Here’s How It Can Be Even Better

XDA Developers reports that all new apps and app updates on Google Play will need to target API level 30 from November 2021, forcing many developers to consider this.

Either way, this is a pretty smart move on Google’s part as some apps sniff your list of installed apps for advertising purposes or to sell that data to others. Malicious actors could also theoretically read lists of apps for their own purposes (for example, determining the best targets).

Hopefully this crackdown will succeed better than Google’s other efforts to restrict permissions on Android. The company previously restricted call and text permissions in the name of security and privacy, but this affected legitimate apps like the Cerberus device security tool.