I’m a big RxJava enthusiast. As an Android developer, I use it because it helps streamline my development by cutting down on a lot of the boilerplate that’s generally associated with asynchronous tasks.
Known vulnerabilities exist for libraries common to Android development such as OkHttp and Apache Commons I/O. The importance of such an issue is highlighted by its position in the OWASP 2017 Top 10 as A9 - Using Components…
The root cause of the fragment exception is that a fragment transaction cannot be performed after
onSaveInstanceState(). If you can’t commit the transaction at that point, you can’t save it to the instance state bundle either, because
onSaveInstanceState() has already been called and it’s too late to save anything.