The spreadsheet links to Vulnerability Note VU#582497 (<a href="http://www.kb.cert.org/vuls/id/582497" rel="nofollow">http://www.kb.cert.org/vuls/id/582497</a>). This links to additional information in CERT Oracle Secure Coding Standard for Java (<a href="https://www.securecoding.cert.org/confluence/pages/viewpage.action?pageId=134807561" rel="nofollow">https://www.securecoding.cert.org/confluence/pages/viewpage....</a>). That states that a compliant solution example may be found in "Android Application Secure Design/Secure Coding Guidebook" (<a href="http://www.jssec.org/dl/android_securecoding.pdf" rel="nofollow">http://www.jssec.org/dl/android_securecoding.pdf</a>). Which is written in Japanese.
"Wow, this file is really popular! It might be unavailable until the crowd clears. Try again."<p>Surely Google's infrastructure can manage to serve a spreadsheet!