lib/webauthn/attestation_statement/android_safetynet.rb in webauthn-1.6.0 vs lib/webauthn/attestation_statement/android_safetynet.rb in webauthn-1.7.0

@@ -16,10 +16,11 @@
         trusted_attestation_certificate?(trust_store) &&
           valid_signature? &&
           valid_attestation_domain? &&
           valid_version? &&
           valid_nonce?(authenticator_data, client_data_hash) &&
-          cts_profile_match?
+          cts_profile_match? &&
+          [WebAuthn::AttestationStatement::ATTESTATION_TYPE_BASIC, attestation_certificate]
       end
 
       private
 
       def trusted_attestation_certificate?(trust_store)