I've realized, that Replicant is vulnerable to the following two bugs:
13678484 (Fake ID)
more informations (on the Readme part if you scroll down): https://github.com/Tungstwenty/FakeIDFix
pointer to AOSP patch: https://android.googlesource.com/platform/libcore/+/2bc5e811a817a8c667bca4318ae98582b0ee6dc6
10148349 (Master Key)
more informations: http://www.saurik.com/id/19
pointer to AOSP patch: https://android.googlesource.com/platform/libcore/+/8405b26
I would like to ask you to fix this in future Replicant releases, please.
Hope this is all you need for that; otherwise just let me know.
Thanks for all your hard work on this great Replicant project!
Thanks for opening a ticket about this, I will include the fix in the next set of Replicant images.