* The app will have to be reviewed by the store. Including reviewing all of the code that makes up the app.
* The app will be signed by the store to ensure that hacking the store website doesn't allow a hacker to install arbitrary content on users devices.
* The app will use a [https://dvcs.w3.org/hg/content-security-policy/raw-file/tip/csp-specification.dev.html CSP ] policy to harden the app itself against bugs which would allow an attacker to inject code into the app. This will also make reviewing the app easier.
==== Default CSP policy ====