We examine mobile super apps that host third-party miniapps reusing platform services. Tracing their evolution to store-vetted runtimes, we develop taxonomies and threat models, identify security flaws and abuses, and propose guidance and research directions to strengthen super app ecosystems without harming usability.
2026-01-01
2026-05-02