Plugins can NEVER access your encryption key or identities (including passwords / private keys).
Plugins can only run commands on sessions they have opened.
All actions performed by JuiceSSH plugins are logged to a plugin audit log, held within the JuiceSSH database.
JuiceSSH plugins require certain permissions for actions performed.
You will need to add any permissions your plugin requires from the following list to your AndroidManifest.
The user will be prompted when the plugin is installed as to whether they want to grant the plugin permission to the items requested.
<permission
android:label="JuiceSSH Connections (read-only)"
android:name="com.sonelli.juicessh.api.v1.permission.READ_CONNECTIONS" />
<permission
android:label="JuiceSSH Connections (read-write)"
android:name="com.sonelli.juicessh.api.v1.permission.WRITE_CONNECTIONS" />
<permission
android:label="JuiceSSH Snippets (read-only)"
android:name="com.sonelli.juicessh.api.v1.permission.READ_SNIPPETS" />
<permission
android:label="JuiceSSH Snippets (read-write)"
android:name="com.sonelli.juicessh.api.v1.permission.WRITE_SNIPPETS" />
<permission
android:label="JuiceSSH Port Forwards (read-only)"
android:name="com.sonelli.juicessh.api.v1.permission.READ_PORT_FORWARDS" />
<permission
android:label="JuiceSSH Port Forwards (read-write)"
android:name="com.sonelli.juicessh.api.v1.permission.WRITE_PORT_FORWARDS" />
<permission
android:label="JuiceSSH Connection Groups (read-only)"
android:name="com.sonelli.juicessh.api.v1.permission.READ_CONNECTION_GROUPS" />
<permission
android:label="JuiceSSH Connection Groups (read-write)"
android:name="com.sonelli.juicessh.api.v1.permission.WRITE_CONNECTION_GROUPS" />
<permission
android:label="Open JuiceSSH Sessions"
android:name="com.sonelli.juicessh.api.v1.permission.OPEN_SESSIONS" />
<permission
android:label="JuiceSSH Plugin Log (read-only)"
android:name="com.sonelli.juicessh.api.v1.permission.READ_PLUGIN_LOG" />