AntiPattern
Security Controls Misapplied
client-side-security-misapplied
Client-side security mechanisms fail or become ineffective because platform constraints and debugging interfaces (ptrace/ADB, FLAG_SECURE lifecycle, missing storage encryption) block enforcement, enabling unauthorized access, data leakage, or unintended behavior under real-world conditions.