> So an apk may just load some zip/apk/dex code from external storage and execute it in current context.
Wouldn't this break all kinds of things, like app sandboxing, the permission system, app intents, …?
> So an apk may just load some zip/apk/dex code from external storage and execute it in current context.
Wouldn't this break all kinds of things, like app sandboxing, the permission system, app intents, …?
… launcher shortcuts, launcher widgets, storage management, multi-process set-ups or even services (those need to be declared statically in the manifest), so yeah it would.
So interesting as a fun exercise, but not really useful for probably quite a few apps.