approvals Archives

AppWizard

June 17, 2026

Android 17 brings enhanced parental controls with screen time and app management tools

Google has launched an enhancement to its Android Parental Controls with the introduction of Android 17, featuring tools for parents to manage children's screen time, app access, content restrictions, and digital wellbeing. Initially available on Pixel devices, it will roll out to all Android smartphones and tablets receiving the Android 17 update. Key features include the ability to set daily screen time limits, create downtime schedules, apply content filters, limit app usage, and block apps. The integration with Google Family Link allows for additional supervision tools such as School Time Mode, purchase approvals, location tracking, and device activity monitoring. Google has also increased its U.S. Digital Wellbeing Fund to support research and programs aimed at promoting healthy technology usage among children and teenagers. The new parental controls will be accessible through Android Settings on devices updated to Android 17.

AppWizard

June 17, 2026

New Rokarolla Android Trojan Targets 217 Banking and Crypto Apps

Zimperium’s zLabs researchers have analyzed a newly identified Android banking trojan named Rokarolla, which targets 217 distinct banking and cryptocurrency applications. It is distributed through malicious websites that impersonate popular platforms like TikTok and Google Chrome, with one identified distribution point being hxxps://infocontablidades[.]it[.]com/. The malware uses a dropper disguised as Google Play Protect to install a second-stage payload and gain Accessibility Services access, allowing it to simulate user interactions and manipulate on-screen elements. Rokarolla downloads counterfeit HTML login pages for targeted applications and overlays them to capture user credentials, including sensitive card information. It can also deploy a fraudulent PIN entry screen, read and send SMS messages, intercept one-time codes from banks, and block incoming calls. The malware rewrites the clipboard, operates a keylogger and screen content logger, and scrapes WhatsApp contact data. It captures screenshots without alerting users and has a resilient command-and-control infrastructure with multiple fallback domains. No product flaws are exploited, and defenses against it include installing apps only from Google Play and being cautious with Accessibility Services. Zimperium’s Mobile Threat Defense and zDefend products can detect Rokarolla, and a list of indicators of compromise is available on their GitHub repository.

AppWizard

June 16, 2026

New expanded Android parental controls to support families around the world

Android is expanding its Parental Controls feature to all devices upgrading to Android 17, allowing parents to manage their children's screen time effectively. The controls include screen time management, downtime scheduling, app store filters, and app usage control, all accessible through Android Settings and secured by a PIN. The setup of Google Family Link is also facilitated through the Family Link app, which provides additional features like School Time and location alerts. Additionally, there is an increase in the U.S. digital wellbeing fund to over a million dollars to support initiatives promoting healthy technology interactions and resources to combat social isolation.

AppWizard

June 16, 2026

New Rokarolla Android Malware Steals PINs, SMS Codes, and Crypto Wallet Funds

Security researchers at Zimperium's zLabs have identified a new Android banking trojan named Rokarolla, which can target 217 banking and cryptocurrency applications and execute 137 remote commands. The malware spreads through deceptive websites that impersonate popular apps, installing a dropper that mimics Google Play Protect to gain Accessibility access. It uses overlay techniques to capture sensitive information by displaying counterfeit login pages and can intercept SMS messages, including one-time codes from banks. Rokarolla also features a keylogger, screen logger, and can rewrite clipboard contents to divert cryptocurrency payments. It employs advanced methods for discreet data capture and has multiple fallback command-and-control domains, making it resilient against takedowns. There is no patch available for this malware, and users are advised to install apps only from Google Play and remain cautious of unexpected Accessibility requests. Zimperium's products can detect this malware, and indicators of compromise are available on their GitHub repository.

Tech Optimizer

June 10, 2026

Microsoft Open-Sources PostgreSQL Extension for In-Database Durable Execution

Microsoft has introduced pg_durable, a PostgreSQL extension that enables developers to execute durable workflows within the database, reducing the need for external orchestration systems. It simplifies workflow management by allowing developers to express long-running, fault-tolerant SQL functions directly in SQL, managing execution concerns like retries and recovery. Workflows are defined in SQL, with the extension handling retry states, progress tracking, and checkpointing. A pg_durable function operates as a graph of SQL steps that can resume from the last durable checkpoint after a failure. The extension preserves execution states within PostgreSQL tables, ensuring workflows can withstand crashes and restarts. It includes a domain-specific language (DSL) for scheduling and parallel execution. An example of a durable function is provided, demonstrating sequential and parallel execution using specific operators. pg_durable is particularly useful for vector embedding pipelines and scheduled maintenance tasks. Architecturally, it consists of a PostgreSQL extension and a background worker built on Rust libraries, without any external control plane. Durable execution allows long-running workflows to automatically resume from failure points, simplifying distributed system architecture.

AppWizard

May 26, 2026

Google’s free AI tool helps non-coders build 2.5 lakh Android apps

Google has announced that over 250,000 Android applications have been created using its AI-powered tool within Google AI Studio, primarily by individuals with no prior app development experience. The tool allows users to build native Android apps without coding knowledge, addressing a significant barrier in software development. Google is also working on simplifying the app publishing process, with plans to enable direct publishing to the Play Store from AI Studio. Concerns have been raised about the quality of AI-generated apps, but Google maintains that high-quality standards will be prioritized in the publishing process.

AppWizard

May 8, 2026

Google is turning Android Studio into a policy watchdog

Google is enhancing the development experience for Android app creators by expanding Play Policy Insights within Android Studio, allowing developers to identify potential policy issues during coding. Developers will connect their Play developer accounts to access tailored insights. Google is also leveraging the SDK Index, a searchable database of Android SDKs, to provide crucial information on permissions and compliance with Play policies. To improve app security and user privacy, Google is upgrading the Play Integrity API for quicker detection of fraud and abuse, and introducing new privacy tools like a contact picker and location button. Support for post-quantum cryptography in Play App Signing will be added to protect apps from future threats. Developer verification will be implemented across Android to prevent the distribution of harmful apps. Google is revamping the Play Console to streamline the app publishing process, introducing expanded pre-review checks for common policy violations, a release status API for tracking approvals, and a feature to prevent new commits during reviews. Parallel publishing will be rolled out to avoid delays in updates. Additional enhancements include a Submission History log, secure account transfer tools, AI-powered policy recommendations, and expanded Play Academy training resources for new developers.

Tech Optimizer

May 5, 2026

Open Source Tamper-Proof Database Adds Immutable Audit Logging and Expands PostgreSQL Compatibility

Codenotary has released immudb 1.11, an open-source database that enhances immutable audit logging and compatibility with PostgreSQL. This version features integrated audit logging that captures database activities in a tamper-proof manner, eliminating the need for external logging systems. It allows organizations to create unalterable audit trails, streamline compliance processes, and maintain a reliable history of data interactions. Immudb 1.11 is compatible with existing PostgreSQL code, enabling seamless integration with various applications and tools. The database is particularly beneficial for sectors requiring trust and accountability, such as finance, software development, cybersecurity, regulated industries, AI systems, and supply chain management. Immudb has over 50 million downloads and supports a zero-trust approach to data management. The open-source version is available on GitHub.

Tech Optimizer

April 30, 2026

Inside the Architecture of an MCP Server for PostgreSQL

The Model Context Protocol (MCP) serves as a standard interface between large language models (LLMs) and external systems like PostgreSQL, emphasizing the importance of control over mere connectivity. An MCP server must act as a mediation and policy layer, enforcing security boundaries and ensuring that connections default to read-only. It should validate AI-generated SQL as untrusted input, encapsulate queries within transactions, and apply execution-time controls. The server must separate query generation from execution approval to manage operational costs and enforce guardrails on query types, such as limiting the number of rows returned. Token efficiency is crucial, with design considerations for compact data representation and schema introspection. In production, connection management is vital to prevent data leakage among multiple AI agents, and observability through logging executed queries and metadata is necessary for debugging and compliance. Long-running sessions require support for paginated responses to manage context effectively. Overall, the MCP server must integrate security, query safety, token efficiency, and observability into its design from the outset.

AppWizard

March 22, 2026

Toby Fox says ‘most of the development team has moved on’ from Deltarune’s fifth chapter, as focus moves to bug fixes and translation

Toby Fox announced that professional testers are currently familiarizing themselves with Deltarune's Chapter 5, with formal testing starting on April 1st. The quality assurance for the Japanese translation is expected to finish in April. Most of the development team is currently focused on fixing bugs and translation issues rather than developing Chapter 5. The testing phase will last an unspecified duration, requiring console approvals and additional preparations before release. The gap between the first and second chapters was three years, and the wait for the dual release of chapters three and four was nearly four years, but the timeline for Chapter 5's release is expected to be shorter. It is speculated that there may be seven chapters in total. The first two chapters are available for free on Steam.