Curated topic

mobile

Posts tagged with mobile

Engineering at MetaApr 9, 2026

Escaping the Fork: How Meta Modernized WebRTC Across 50+ Use Cases

Why it matters: Meta's approach provides a blueprint for maintaining large open-source dependencies without getting stuck in permanent forks. By using dual-stack architectures and namespace mangling, they enabled safe upgrades and A/B testing for critical infrastructure serving billions of users.

Meta migrated from a divergent WebRTC fork to a modular architecture based on the latest upstream version to escape the 'forking trap'.
A dual-stack architecture with a shim layer was implemented to allow simultaneous execution and A/B testing of legacy and upstream versions.
To avoid C++ One Definition Rule (ODR) violations, Meta used automated namespace mangling to rename symbols in the secondary library copy.
The shim layer approach achieved an 87% reduction in binary size impact compared to duplicating higher-level orchestration libraries.
A 'Patch-First' workflow was established in the monorepo to automate the rebasing of internal optimizations onto new upstream releases.

#dist #mobile #sre

Read original

Pinterest EngineeringApr 8, 2026

Performance for Everyone

Why it matters: Automating performance metrics lowers the barrier for product teams to prioritize speed. By making Visually Complete latency a default feature, engineers can focus on optimization rather than instrumentation, ensuring a consistently fast user experience across all app surfaces.

Pinterest automated the measurement of Visually Complete latency by integrating tracking logic directly into base UI classes.
The system reduces engineering effort from two weeks per surface to zero by automatically measuring any feature built on the BaseSurface class.
Measurement is achieved by walking the Android view tree to verify the rendering status of visible media components like images, text, and video.
Standardized interfaces such as PerfImageView and PerfTextView provide methods like isDrawn() to report precise rendering timestamps.
The solution currently monitors over 60 surfaces on Android and has been successfully ported to iOS and Web platforms for cross-platform consistency.

#mobile #frontend

Read original

GitHub EngineeringMar 24, 2026

Building AI-powered GitHub issue triage with the Copilot SDK

Why it matters: The Copilot SDK allows engineers to build custom AI tools for specific workflows. This server-side architecture pattern enables secure, scalable integration of LLMs into mobile and web apps, automating high-toil tasks like issue triage while protecting credentials.

The Copilot SDK requires a Node.js runtime and the Copilot CLI to be installed on the system PATH, necessitating a server-side integration for mobile apps.
The SDK follows a strict lifecycle of start, createSession, sendAndWait, disconnect, and stop; failing to clean up sessions causes resource leaks.
Server-side implementation ensures API tokens remain secure and allows for centralized logging and monitoring of AI requests.
The integration uses JSON-RPC to communicate between the SDK and the local Copilot CLI process.
Effective AI summaries are achieved through structured prompt engineering, feeding the model issue titles, descriptions, and labels for context.
Developers can configure specific models like GPT-4 and must handle permission requests using patterns such as approveAll.

#mobile #mlp #security

Read original

Slack EngineeringMar 19, 2026

How Slack Rebuilt Notifications 📣

Why it matters: Scaling notification systems requires balancing high-volume delivery with user cognitive load. Slack's rebuild demonstrates how architectural simplification and cross-platform consistency reduce technical debt and improve UX by making complex systems predictable.

Consolidated four conflicting mental models into a single, unified notification system across desktop and mobile platforms.
Decoupled notification triggers from delivery mechanisms to allow users to separate in-app awareness from push notifications.
Simplified channel-level settings into three clear, predictable options: All new posts, Mentions, or Mute.
Improved synchronization logic to ensure preference states remain consistent and reliable across all client devices.
Redesigned the global preference architecture to provide a centralized, hierarchical structure for both basic and advanced user controls.

#mobile #frontend #dist

Read original

Engineering at MetaMar 13, 2026

Patch Me If You Can: AI Codemods for Secure-by-Default Android Apps

Why it matters: Scaling security updates across massive codebases is traditionally slow and error-prone. By combining secure-by-default frameworks with AI-powered codemods, Meta demonstrates how to automate large-scale security migrations, reducing developer friction and improving app safety at scale.

Meta utilizes a two-pronged strategy for mobile security: secure-by-default frameworks and AI-driven automated migrations.
Secure-by-default frameworks wrap unsafe Android OS APIs to ensure the secure path is the easiest for developers to follow.
Generative AI is leveraged to automate the migration of legacy code to these secure frameworks at a massive scale.
The system automates the proposal, validation, and submission of security patches across millions of lines of code.
This approach significantly reduces developer friction and manual effort required to maintain security across a sprawling codebase.

#security #mobile #mlp

Read original

Salesforce EngineeringMar 2, 2026

Delivering Accurate, Low-Latency Voice-to-Form AI in Real-World Field Conditions

Why it matters: This architecture demonstrates how to balance on-device processing with cloud AI to solve real-world data entry challenges. It provides a blueprint for building low-latency, high-accuracy mobile AI features that function reliably in noisy, bandwidth-constrained environments.

Implemented a hybrid architecture using on-device speech-to-text (STT) to minimize latency and cloud-based LLMs for semantic field mapping.
Achieved 85% field-level accuracy by providing LLMs with schema-driven metadata, including field types, constraints, and examples.
Managed latency by performing transcription locally on mobile devices, reducing payload sizes and avoiding audio transmission to the cloud.
Developed a Voice Utterance Library containing real-world field recordings to test system reliability against background noise and diverse accents.
Integrated a human-in-the-loop review step, allowing technicians to edit transcriptions before final submission to ensure data integrity.

#mobile #mlp #data

Read original

Salesforce EngineeringFeb 23, 2026

Building an AI-Accelerated Compliance Automation Platform for 24x Faster Audits

Why it matters: Automating compliance reduces operational risk and engineering toil. By moving from fragile UI-driven workflows to API-first systems using AI-assisted development, teams can deliver audit-ready evidence 24x faster while maintaining high engineering standards.

Developed FastTrack, an API-first automation platform that replaced manual, screenshot-driven compliance audits for mobile app stores.
Achieved a 24x reduction in audit execution time by moving from fragile UI-based workflows to deterministic API integrations.
Utilized AI-assisted development to accelerate the path from system design to production, enabling rapid prototyping of validation logic.
Addressed data granularity gaps in the Google Play Console API by redefining evidence boundaries in collaboration with compliance stakeholders.
Embedded runtime validation and transparent API query logging to create verifiable, compliance-grade audit trails.

#mobile #security #culture

Read original

Spotify EngineeringFeb 9, 2026

How We Release the Spotify App: A Look Under the Hood (Part 2)

Why it matters: Scaling mobile releases to hundreds of engineers requires robust automation. This look into Spotify's tooling provides insights into building resilient CI/CD pipelines that maintain high velocity and app stability.

Spotify utilizes specialized internal tooling to orchestrate the complex release cycle of its mobile applications.
The release infrastructure is designed to handle the scale of hundreds of developers contributing to a single codebase.
Automation is a core component, managing the process from code freeze to final app store submission.
The tooling ensures consistency across platforms while maintaining high stability through automated validation gates.

#mobile #sre

Read original

Engineering at MetaFeb 4, 2026

No Display? No Problem: Cross-Device Passkey Authentication for XR Devices

Why it matters: This approach enables secure, phishing-resistant authentication for devices with limited UI, like XR headsets and IoT. By replacing QR codes with companion app transport, it maintains FIDO security standards while significantly improving the user experience for passwordless logins.

Meta introduced a novel cross-device passkey flow for XR and screenless devices that eliminates the need for scanning QR codes.
The approach utilizes the FIDO CTAP hybrid protocol, replacing visual data transfer with a secure message transport via a companion mobile app.
The XR device generates a FIDO URL containing an ECDH public key and session secret, delivered to the phone via GraphQL-based push notifications.
The companion app triggers native iOS or Android passkey verification flows upon receiving the notification, maintaining standard security requirements.
Proximity verification via Bluetooth or NFC is still enforced to ensure the authenticating device is physically near the XR hardware.

#security #mobile

Read original

Engineering at MetaJan 27, 2026

Rust at Scale: An Added Layer of Security for WhatsApp

Why it matters: WhatsApp's migration demonstrates that Rust is production-ready for massive-scale, cross-platform applications. It proves memory-safe languages can replace legacy C++ to eliminate vulnerabilities while improving performance and maintainability.

WhatsApp replaced its wamedia C++ library with a Rust implementation to mitigate memory-related vulnerabilities in media file processing.
The migration reduced the codebase from 160,000 lines of C++ to 90,000 lines of Rust while improving performance and memory efficiency.
The Kaleidoscope system performs structural checks on media, detects masquerading file types, and flags high-risk elements like embedded scripts.
WhatsApp utilized differential fuzzing and extensive integration testing to ensure compatibility between the legacy C++ and new Rust versions.
This deployment represents one of the largest global rollouts of Rust, spanning billions of devices across Android, iOS, Web, and wearables.

#security #mobile #dist

Read original

Page 1 of 3

Prev1 2 3 Next