🚨 How to Prevent Leaking Your Android Keystore (.jks) on GitHub

One common but dangerous mistake Android developers make is accidentally committing their keystore (.jks) file to Git. This can expose your app signing key and compromise your app on the Play Store.

🔍 The Problem

Even if you delete a .jks file from your project, Git may still be tracking it. That means it can still be pushed to GitHub — which is a serious security risk.

✅ Step 1: Add .jks to .gitignore

Open your .gitignore file (in the root of your project) and add: 

*.jks

This tells Git to ignore all keystore files in your project.

⚠️ Step 2: Remove Already Tracked Files

Important: .gitignore does NOT remove files that Git is already tracking. You must remove them manually. 

git rm --cached upload-key.jks
git rm --cached app/upload-key.jks

This removes the files from Git tracking but keeps them on your local machine.

🔎 Step 3: Verify It Works

Check if Git is still tracking any .jks files:

git ls-files | findstr jks

If nothing shows, you're safe ✅

Also confirm ignore rules:

git check-ignore -v upload-key.jks

💡 Key Takeaway

  • .gitignore only works for future files
  • Tracked files must be manually removed
  • Always verify before pushing to GitHub

🔐 Bonus: Recommended .gitignore Entries

# Keystore files
*.jks
*.keystore

# Signing configs
key.properties

# Local config
local.properties

🚀 Final Thoughts

Securing your keystore is critical for protecting your Android app. A small mistake in Git can lead to exposing sensitive credentials publicly.

Always double-check your .gitignore and Git tracking before pushing your code.

Stay safe and build securely 🔐

Comments

Post a Comment

Popular posts from this blog

Hierarchy Star Reports - Official Blog Hierarchy Star Reports Smart Reporting & Data Management System 🚀 About the App Hierarchy Star Reports is a powerful reporting and data management system designed to help users organize, track, and manage structured information efficiently. 📱 Download the App Get the official mobile app and start using the system today. Download on Play Store 📊 Features Easy data reporting system User-friendly interface Fast performance Secure and reliable 📢 Latest Updates Stay tuned for updates, improvements, and new features coming soon. 📞 Contact Email: olurotimiawofisan@gmail.com Phone: 0706 659 5319 © 2026 Hierarchy Star Reports. All rights reserved. Developed & Managed by Alapo Unique Integrated Computers
Read more
NR-V2X Mode 2 in ns-3 In 5G NR-V2X, vehicles communicate directly using sidelink. Two modes exist: Mode 1: gNB schedules sidelink resources. Mode 2: UEs autonomously select sidelink resources (no gNB needed). Mode 2 is especially important for vehicular networks (IoV), where cars must exchange safety messages without relying on infrastructure. In ns-3, the NrHelper class is used to: Create UE devices with sidelink PHY/MAC layers. Attach them to Bandwidth Parts (BWPs) and spectrum channels. Configure sidelink attributes such as: SidelinkMode = 2 (autonomous) SidelinkPeriod (resource pool periodicity) SidelinkSubchannelSize (RB grouping)
Read more

From DSRC to 5G NR-V2X: The Road Ahead for Connected Vehicles

Modern vehicles are no longer just machines on wheels. Through Vehicle-to-Everything (V2X) communication , they are becoming active participants in intelligent transport systems, enabling safer driving, smoother traffic, and progress toward automation. DSRC: The First Step The earliest V2X technology was Dedicated Short-Range Communications (DSRC) , based on IEEE 802.11p. Operating in the 5.9 GHz band , it allowed onboard units (OBUs) in vehicles to exchange safety and infotainment data with roadside units (RSUs) . While DSRC was effective for short-range messaging, it faced limits in coverage, data rate, and quality of service (QoS) . These challenges motivated researchers to explore new solutions. D2D and the Cellular Shift A key breakthrough came with Device-to-Device (D2D) communication , where vehicles exchange information directly without always relying on infrastructure. This reduces latency, eases network congestion, and helps maintain reliability in crow...
Read more