feat: rewrite Async API

Signed-off-by: Denis Dobanda <[email protected]>

Author: theDeniZ

.swiftpm/xcode/xcshareddata/xcschemes/SecurityToolkit.xcscheme

@@ -0,0 +1,67 @@
+<?xml version="1.0" encoding="UTF-8"?>
+<Scheme
+   LastUpgradeVersion = "1620"
+   version = "1.7">
+   <BuildAction
+      parallelizeBuildables = "YES"
+      buildImplicitDependencies = "YES"
+      buildArchitectures = "Automatic">
+      <BuildActionEntries>
+         <BuildActionEntry
+            buildForTesting = "YES"
+            buildForRunning = "YES"
+            buildForProfiling = "YES"
+            buildForArchiving = "YES"
+            buildForAnalyzing = "YES">
+            <BuildableReference
+               BuildableIdentifier = "primary"
+               BlueprintIdentifier = "SecurityToolkit"
+               BuildableName = "SecurityToolkit"
+               BlueprintName = "SecurityToolkit"
+               ReferencedContainer = "container:">
+            </BuildableReference>
+         </BuildActionEntry>
+      </BuildActionEntries>
+   </BuildAction>
+   <TestAction
+      buildConfiguration = "Debug"
+      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
+      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
+      shouldUseLaunchSchemeArgsEnv = "YES"
+      shouldAutocreateTestPlan = "YES">
+   </TestAction>
+   <LaunchAction
+      buildConfiguration = "Debug"
+      selectedDebuggerIdentifier = "Xcode.DebuggerFoundation.Debugger.LLDB"
+      selectedLauncherIdentifier = "Xcode.DebuggerFoundation.Launcher.LLDB"
+      launchStyle = "0"
+      useCustomWorkingDirectory = "NO"
+      ignoresPersistentStateOnLaunch = "NO"
+      debugDocumentVersioning = "YES"
+      debugServiceExtension = "internal"
+      allowLocationSimulation = "YES">
+   </LaunchAction>
+   <ProfileAction
+      buildConfiguration = "Release"
+      shouldUseLaunchSchemeArgsEnv = "YES"
+      savedToolIdentifier = ""
+      useCustomWorkingDirectory = "NO"
+      debugDocumentVersioning = "YES">
+      <MacroExpansion>
+         <BuildableReference
+            BuildableIdentifier = "primary"
+            BlueprintIdentifier = "SecurityToolkit"
+            BuildableName = "SecurityToolkit"
+            BlueprintName = "SecurityToolkit"
+            ReferencedContainer = "container:">
+         </BuildableReference>
+      </MacroExpansion>
+   </ProfileAction>
+   <AnalyzeAction
+      buildConfiguration = "Debug">
+   </AnalyzeAction>
+   <ArchiveAction
+      buildConfiguration = "Release"
+      revealArchiveInOrganizer = "YES">
+   </ArchiveAction>
+</Scheme>

CHANGELOG.md

@@ -1,6 +1,10 @@
 iOS Mobile Security Toolkit Library Changelog
 ===========================
 
+# 2.0.0
+* Introduced async API: threatReports
+
+
 # 1.1.1
 * Fixed podspec deployment
 

CONTRIBUTING.md

@@ -55,12 +55,6 @@ and reference the old one instead.
 
 ## Development
 
-This project contains a private code, not available for public reading or 
-editing. Please unterstand this measurement to prevent security risks. 
-Developing new features or fixing bugs can be done in both private and public 
-parts of this project. You are welcome to participate in public part!  
-
-
 ### Setup
 
 Please use the latest Xcode Version. Use the provided example project to test 

LICENSE.md

@@ -1,4 +1,4 @@
-Copyright 2024 Exxeta
+Copyright 2025 Exxeta
 
 Permission is hereby granted, free of charge, to any person obtaining a copy of 
 this software and associated documentation files (the “Software”), to deal in 

README.md

@@ -2,6 +2,9 @@
 
 ![License](https://img.shields.io/github/license/EXXETA/Android-Security-Toolkit.svg?style=flat-square)
 ![Release](https://img.shields.io/github/release/EXXETA/Android-Security-Toolkit.svg?style=flat-square)
+[![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FEXXETA%2FiOS-Security-Toolkit%2Fbadge%3Ftype%3Dswift-versions)](https://swiftpackageindex.com/EXXETA/iOS-Security-Toolkit)
+[![](https://img.shields.io/endpoint?url=https%3A%2F%2Fswiftpackageindex.com%2Fapi%2Fpackages%2FEXXETA%2FiOS-Security-Toolkit%2Fbadge%3Ftype%3Dplatforms)](https://swiftpackageindex.com/EXXETA/iOS-Security-Toolkit)
+
 
 <img src="./docs/1.png" width=300  alt="screenshot"/>
 
@@ -35,7 +38,7 @@ Swift Package Manager
 ### SPM
 
 `.package(url: "https://github.com/EXXETA/iOS-Security-Toolkit.git", from: 
-"1.1.1")`
+"2.0.0")`
 
 ## CocoaPods
 

SecurityToolkit.podspec

@@ -1,6 +1,6 @@
 Pod::Spec.new do |s|
   s.name             = 'SecurityToolkit'
-  s.version          = '1.1.1'
+  s.version          = '2.0.0'
   s.summary          = 'Simple and easy security threat detector in Swift'
   s.homepage         = 'https://github.com/EXXETA/iOS-Security-Toolkit'
   s.license          = { :type => 'MIT', :file => 'LICENSE.md' }

Sources/ThreatDetectionCenter.swift

@@ -1,27 +1,112 @@
 import Foundation
+import Combine
 
 public final class ThreatDetectionCenter {
-
+    
+    private init() {}
+    
+    /// **Seconds** to wait for cycle recheck threads before running check again
+    /// > Should be positive and greater than 0, otherwise value is left unchanged
+    static public var threatReportsUpdateInterval: Int {
+        get { return _threatReportsUpdateInterval }
+        set {
+            if (newValue > 0) {
+                _threatReportsUpdateInterval = newValue
+            }
+        }
+    }
+    
+    
+    // MARK: - Async Threat Detection
+    
+    // Private publisher for sending temperature updates
+    static private let reportPublisher = CurrentValueSubject<ThreatReport, Never>(ThreatReport())
+    
+    static private var task: Task<(), Never>?
+    static private var internalTasks: [Task<(), Never>] = []
+    static private var _threatReportsUpdateInterval = 10
+    
+    /// Use this API to get ThreatReports
+    ///
+    /// > First access will start all Tasks and cache the result.
+    /// Next calls will not start any additional Tasks. Original result
+    /// will be cached and can be reused
+    static public var threatReports: AnyPublisher<ThreatReport, Never> {
+        task = task ?? Task {
+            internalTasks.append(
+                Task {
+                    repeat {
+                        let status = JailbreakDetector.threatDetected()
+                        reportPublisher.update { $0.copy(rootPrivileges: status) }
+                        await insertDelay()
+                    } while !Task.isCancelled
+                }
+            )
+            internalTasks.append(
+                Task {
+                    repeat {
+                        let status = HooksDetector.threatDetected()
+                        reportPublisher.update { $0.copy(hooks: status) }
+                        await insertDelay()
+                    } while !Task.isCancelled
+                }
+            )
+            internalTasks.append(
+                Task {
+                    let status = SimulatorDetector.threatDetected()
+                    reportPublisher.update { $0.copy(simulator: status) }
+                }
+            )
+            internalTasks.append(
+                Task {
+                    repeat {
+                        let status = DebuggerDetector.threatDetected()
+                        reportPublisher.update { $0.copy(debugger: status) }
+                        await insertDelay()
+                    } while !Task.isCancelled
+                }
+            )
+            internalTasks.append(
+                Task {
+                    repeat {
+                        let status = DevicePasscodeDetector.threatDetected()
+                        reportPublisher.update { $0.copy(devicePasscode: status) }
+                        await insertDelay()
+                    } while !Task.isCancelled
+                }
+            )
+            internalTasks.append(
+                Task {
+                    let status = HardwareSecurityDetector.threatDetected()
+                    reportPublisher.update { $0.copy(hardwareCryptography: status) }
+                }
+            )
+        }
+        return reportPublisher.eraseToAnyPublisher()
+    }
+    
+    public static func close() {
+        internalTasks.forEach { $0.cancel() }
+        task?.cancel()
+        internalTasks.removeAll()
+        task = nil
+    }
+    
+    // MARK: - Sync API
+    
     /// Will check if jailbreak is present
     ///
-    /// - Returns:
-    ///  `true`, if device is / was jailbroken;
-    ///  `false` otherwise
-    ///
     /// More about jailbreak: https://wikipedia.org/wiki/Jailbreak_%28iOS%29
     ///
     /// > Should also detect jailbreak, even if the device is in a "safe" mode or
     /// jailbreak mode is not active / was not properly removed
-    public static var areRootPrivilegesDetected: Bool {
-        JailbreakDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var rootPrivilegesStatus: ThreatStatus {
+        JailbreakDetector.threatDetected()
     }
-
+    
     /// Will check for an injection tool like Frida
     ///
-    /// - Returns:
-    ///  `true`, if dynamic hooks are loaded at the time;
-    ///  `false` otherwise
-    ///
     /// More: https://fingerprint.com/blog/exploring-frida-dynamic-instrumentation-tool-kit/
     ///
     /// > By the nature of dynamic hooks, this checks should be made on a regular
@@ -30,45 +115,34 @@ public final class ThreatDetectionCenter {
     ///
     /// > Important: with a sufficient reverse engineering skills, this check can
     /// be disabled. Use always in combination with another threats detections.
-    public static var areHooksDetected: Bool {
-        HooksDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var hooksStatus: ThreatStatus {
+        HooksDetector.threatDetected()
     }
-
+    
     /// Will check, if the app runs in a emulated / simulated environment
-    ///
-    /// - Returns:
-    ///  `true`, if simulator environment is detected;
-    ///  `false` otherwise
-    public static var isSimulatorDetected: Bool {
-        SimulatorDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var simulatorStatus: ThreatStatus {
+        SimulatorDetector.threatDetected()
     }
 
     /// Will check, if the application is being traced by a debugger.
     ///
-    /// - Returns:
-    ///   `true`, if a debugger is detected;
-    ///   `false`, if no debugger is detected;
-    ///   `nil`, if the detection process did not produce a definitive result.
-    ///   This could happen due to system limitations, lack of required
-    ///   permissions, or other undefined conditions.
-    ///
     /// A debugger is a tool that allows developers to inspect and modify the
     /// execution of a program in real-time, potentially exposing sensitive data
     /// or allowing unauthorized control.
     ///
     /// > Please note that Apple itself may require a debugger for the app review
     /// process.
-    public static var isDebuggerDetected: Bool? {
-        DebuggerDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var debuggerStatus: ThreatStatus {
+        DebuggerDetector.threatDetected()
     }
-
+    
     /// Will check, if current device is protected with at least a passcode
-    ///
-    /// - Returns:
-    ///  `true`, if device is unprotected;
-    ///  `false`, if device is protected with at least a passcode
-    public static var isDeviceWithoutPasscodeDetected: Bool {
-        DevicePasscodeDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var devicePasscodeStatus: ThreatStatus {
+        DevicePasscodeDetector.threatDetected()
     }
 
     /// Will check, if current device has hardware protection layer
@@ -78,61 +152,37 @@ public final class ThreatDetectionCenter {
     ///
     /// More: https://developer.apple.com/documentation/security/protecting-keys-with-the-secure-enclave
     ///
-    /// - Returns:
-    ///  `true`, if device has no hardware protection;
-    ///  `false` otherwise
-    ///
     /// > Should be evaluated on a real device. Should only be used as an
     /// indicator, if current device is capable of hardware protection. Does not
     /// automatically mean, that encryption operations (keys, certificates,
     /// keychain) are always backed by hardware. You should make sure, such
     /// operations are implemented correctly with hardware layer
-    public static var isHardwareProtectionUnavailable: Bool {
-        HardwareSecurityDetection.threatDetected()
+    @available(*, deprecated, message: "Migrate to use new threatReports async API")
+    public static var hardwareCryptographyStatus: ThreatStatus {
+        HardwareSecurityDetector.threatDetected()
     }
 
-	
-	// MARK: - Async Threat Detection
-	
-	/// Defines all possible threats, that can be reported via the stream
-    public enum Threat: String {
-        case rootPrivileges
-        case hooks
-        case simulator
-        case debugger
-        case deviceWithoutPasscode
-        case hardwareProtectionUnavailable
+    // MARK: - Private API
+    
+    static private func insertDelay() async {
+        try? await Task.sleep(nanoseconds: UInt64(_threatReportsUpdateInterval) * NSEC_PER_SEC)
     }
-	
-	/// Stream that contains possible threats that could be detected
-    public static var threats: AsyncStream<Threat> {
-        AsyncStream<Threat> { continuation in
-            
-            if JailbreakDetection.threatDetected() {
-                continuation.yield(.rootPrivileges)
-            }
-            
-            if HooksDetection.threatDetected() {
-                continuation.yield(.hooks)
-            }
-            
-            if SimulatorDetection.threatDetected() {
-                continuation.yield(.simulator)
-            }
-            
-            if DebuggerDetection.threatDetected() ?? false {
-                continuation.yield(.debugger)
-            }
+}
 
-            if DevicePasscodeDetection.threatDetected() {
-                continuation.yield(.deviceWithoutPasscode)
+fileprivate extension CurrentValueSubject where Output: Equatable {
+    /// Use this function to update a value in the publisher atomically
+    func update(_ callback: (Output) -> Output) {
+        while true {
+            let value = self.value
+            let newValue = callback(value)
+            if (Task.isCancelled) {
+                return
+            } else if value == newValue {
+                return
+            } else if self.value == value {
+                self.value = newValue
+                return
             }
-            
-            if HardwareSecurityDetection.threatDetected() {
-                continuation.yield(.hardwareProtectionUnavailable)
-            }
-
-            continuation.finish()
         }
     }
 }