行為變更：所有應用程式

透過集合功能整理內容 你可以依據偏好儲存及分類內容。

Android 15 平台包含可能對應用程式造成影響的行為變更。無論 targetSdkVersion 為何，當應用程式在 Android 15 上執行時，下列行為變更將會套用至所有應用程式。您應測試應用程式，並視需要修改，以便在適當情況下支援新版本功能。

另請務必查看僅對指定 Android 15 為目標版本的應用程式造成影響的行為變更。

核心功能

Android 15 會修改或擴充 Android 系統的各種核心功能。

變更為套件已停止狀態

The intention of the package FLAG_STOPPED state (which users can engage in AOSP builds by long-pressing an app icon and selecting "Force Stop") has always been to keep apps in this state until the user explicitly removes the app from this state by directly launching the app or indirectly interacting with the app (through the sharesheet or a widget, selecting the app as live wallpaper, etc.). In Android 15, we've updated the behavior of the system to be aligned with this intended behavior. Apps should only be removed from the stopped state through direct or indirect user action.

To support the intended behavior, in addition to the existing restrictions, the system also cancels all pending intents when the app enters the stopped state on a device running Android 15. When the user's actions remove the app from the stopped state, the ACTION_BOOT_COMPLETED broadcast is delivered to the app providing an opportunity to re-register any pending intents.

You can call the new ApplicationStartInfo.wasForceStopped() method to confirm whether the app was put into the stopped state.

支援 16 KB 頁面大小

以往 Android 僅支援 4 KB 的記憶體頁面大小， 最佳化系統記憶體效能 通常 Android 裝置都有這樣的功能。從 Android 15 開始，Android 開放原始碼計畫會支援 已設定頁面大小為 16 KB (16 KB) 的裝置 裝置)。如果應用程式直接使用任何 NDK 程式庫 或者間接透過 SDK 來重建應用程式， 支援這些 16 KB 裝置

隨著裝置製造商持續開發數量更多 實體記憶體 (RAM)，這類裝置中有許多 16 KB ( ，以便最佳化裝置效能。正在新增 網頁大小支援 16 KB 頁面大小的裝置，可讓您的應用程式在這些裝置上執行 ，有助應用程式享有相關效能 如未重新編譯，應用程式可能無法在 16 KB 裝置上運作 。

為協助您為應用程式添加支援服務，我們提供了指南說明 如果您的應用程式受到影響，您可以瞭解如何 重新建構應用程式 (如適用)，以及如何在 使用模擬器的 16 KB 環境 (包括 Android 15) Android Emulator 的系統映像檔)。

Benefits and performance gains

Devices configured with 16 KB page sizes use slightly more memory on average, but also gain various performance improvements for both the system and apps:

• Lower app launch times while the system is under memory pressure: 3.16% lower on average, with more significant improvements (up to 30%) for some apps that we tested
• Reduced power draw during app launch: 4.56% reduction on average
• Faster camera launch: 4.48% faster hot starts on average, and 6.60% faster cold starts on average
• Improved system boot time: improved by 8% (approximately 950 milliseconds) on average

These improvements are based on our initial testing, and results on actual devices will likely differ. We'll provide additional analysis of potential gains for apps as we continue our testing.

Check if your app is impacted

If your app uses any native code, then you should rebuild your app with support for 16 KB devices. If you are unsure if your app uses native code, you can use the APK Analyzer to identify whether any native code is present and then check the alignment of ELF segments for any shared libraries that you find.

If your app only uses code written in the Java programming language or in Kotlin, including all libraries or SDKs, then your app already supports 16 KB devices. Nevertheless, we recommend that you test your app in a 16 KB environment to verify that there are no unexpected regressions in app behavior.

部分應用程式必須進行必要變更，才能支援私人空間

Private space is a new feature in Android 15 that lets users create a separate space on their device where they can keep sensitive apps away from prying eyes, under an additional layer of authentication. Because apps in the private space have restricted visibility, some types of apps need to take additional steps to be able to see and interact with apps in a user's private space.

All apps

Because apps in the private space are kept in a separate user profile, similar to work profiles, apps shouldn't assume that any installed copies of their app that aren't in the main profile are in the work profile. If your app has logic related to work profile apps that make this assumption, you'll need to adjust this logic.

Medical apps

When a user locks the private space, all apps in the private space are stopped, and those apps can't perform foreground or background activities, including showing notifications. This behavior might critically impact the use and function of medical apps installed in the private space.

The private space setup experience warns users that the private space is not suitable for apps that need to perform critical foreground or background activities, such as showing notifications from medical apps. However, apps can't determine whether or not they're being used in the private space, so they can't show a warning to the user for this case.

For these reasons, if you develop a medical app, review how this feature might impact your app and take appropriate actions—such as informing your users not to install your app in the private space—to avoid disrupting critical app capabilities.

Launcher apps

If you develop a launcher app, you must do the following before apps in the private space will be visible:

1. Your app must be assigned as the default launcher app for the device—that is, possessing the ROLE_HOME role.
2. Your app must declare the ACCESS_HIDDEN_PROFILES normal permission in your app's manifest file.

Launcher apps that declare the ACCESS_HIDDEN_PROFILES permission must handle the following private space use cases:

1. Your app must have a separate launcher container for apps installed in the private space. Use the getLauncherUserInfo() method to determine which type of user profile is being handled.
2. The user must be able to hide and show the private space container.
3. The user must be able to lock and unlock the private space container. Use the requestQuietModeEnabled() method to lock (by passing true) or unlock (by passing false) the private space.

4. While locked, no apps in the private space container should be visible or discoverable through mechanisms such as search. Your app should register a receiver for the ACTION_PROFILE_AVAILABLE and ACTION_PROFILE_UNAVAILABLE broadcasts and update the UI in your app when the locked or unlocked state of the private space container changes. Both of these broadcasts include EXTRA_USER, which your app can use to refer to the private profile user.

   You can also use the isQuietModeEnabled() method to check whether the private space profile is locked or not.

App store apps

The private space includes an "Install Apps" button that launches an implicit intent to install apps into the user's private space. In order for your app to receive this implicit intent, declare an <intent-filter> in your app's manifest file with a <category> of CATEGORY_APP_MARKET.

已移除以 PNG 為基礎的表情符號字型

舊版的 PNG 表情符號字型檔案 (NotoColorEmojiLegacy.ttf) 已移除，只保留以向量為基礎的檔案。自 Android 13 (API 級別 33) 起，系統表情符號轉譯器使用的表情符號字型檔案已從以 PNG 為基礎的檔案變更為以向量為基礎的檔案。基於相容性考量，系統會保留 Android 13 和 14 中的舊版字型檔案，讓自有字型轉譯器的應用程式在升級前，可以繼續使用舊版字型檔案。

如要確認您的應用程式是否受到影響，請搜尋應用程式程式碼中是否有 NotoColorEmojiLegacy.ttf 檔案的參照。

您可以透過多種方式調整應用程式：

• 使用平台 API 轉譯文字。您可以將文字算繪至以位圖為後端的 Canvas，並視需要使用該圖片取得原始圖片。
• 為應用程式新增 COLRv1 字型支援功能。FreeType 開放原始碼程式庫在 2.13.0 以上版本中支援 COLRv1。
• 如非萬不得已，您可以將舊版表情符號字型檔案 (NotoColorEmoji.ttf) 整合至 APK，但這樣一來，您的應用程式就會缺少最新的表情符號更新。詳情請參閱 Noto Emoji GitHub 專案頁面。

將最低目標 SDK 版本從 23 提高至 24

Android 15 builds on the the changes that were made in Android 14 and extends this security further. In Android 15, apps with a targetSdkVersion lower than 24 can't be installed. Requiring apps to meet modern API levels helps to ensure better security and privacy.

Malware often targets lower API levels in order to bypass security and privacy protections that have been introduced in higher Android versions. For example, some malware apps use a targetSdkVersion of 22 to avoid being subjected to the runtime permission model introduced in 2015 by Android 6.0 Marshmallow (API level 23). This Android 15 change makes it harder for malware to avoid security and privacy improvements. Attempting to install an app targeting a lower API level results in an installation failure, with a message like the following one appearing in Logcat:

INSTALL_FAILED_DEPRECATED_SDK_VERSION: App package must target at least SDK version 24, but found 7

On devices upgrading to Android 15, any apps with a targetSdkVersion lower than 24 remain installed.

If you need to test an app targeting an older API level, use the following ADB command:

adb install --bypass-low-target-sdk-block FILENAME.apk

安全性和隱私權

Android 15 introduces robust measures to combat one-time passcode (OTP) fraud and to protect the user's sensitive content, focusing on hardening the Notification Listener Service and screenshare protections. Key enhancements include redacting OTPs from notifications accessible to untrusted apps, hiding notifications during screenshare, and securing app activities when OTPs are posted. These changes aim to keep the user's sensitive content safe from unauthorized actors.

Developers need to be aware of the following to ensure their apps are compatible with the changes in Android 15:

OTP Redaction

Android will stop untrusted apps that implement a NotificationListenerService from reading unredacted content from notifications where an OTP has been detected. Trusted apps such as companion device manager associations are exempt from these restrictions.

Screenshare Protection

• Notification content is hidden during screen sharing sessions to preserve the user's privacy. If the app implements setPublicVersion(), Android shows the public version of the notification which serves as a replacement notification in insecure contexts. Otherwise, the notification content is redacted without any further context.
• Sensitive content like password input is hidden from remote viewers to prevent revealing the user's sensitive information.
• Activities from apps that post notifications during screenshare where an OTP has been detected will be hidden. App content is hidden from the remote viewer when launched.
• Beyond Android's automatic identification of sensitive fields, developers can manually mark parts of their app as sensitive using setContentSensitivity, which is hidden from remote viewers during screenshare.
• Developers can choose to toggle the Disable screen share protections option under Developer Options to be exempted from the screenshare protections for demo or testing purposes. The default system screen recorder is exempted from these changes, since the recordings remain on-device.

相機和媒體

Android 15 會對所有應用程式的相機和媒體行為進行以下變更。

當達到資源限制時，直接和卸載音訊播放功能會使先前開啟的直接或卸載音訊曲目失效

在 Android 15 之前，如果應用程式在其他應用程式播放音訊時要求直接或卸載音訊播放，且已達到資源限制，應用程式就會無法開啟新的 AudioTrack。

自 Android 15 起，當應用程式要求直接或卸載播放功能，且已達到資源限制時，系統會使任何目前開啟的 AudioTrack 物件失效，以免無法滿足新曲目要求。

(直接和卸載音訊音軌通常會在播放壓縮音訊格式時開啟。直接播放音訊的常見用途包括透過 HDMI 將編碼音訊串流至電視。卸載音軌通常用於在行動裝置上播放經過壓縮的音訊，並使用硬體 DSP 加速功能。

使用者體驗和系統 UI

Android 15 包含一些變更，旨在打造更一致、直覺的使用者體驗。

為已選擇加入的應用程式啟用預測返回動畫

從 Android 15 開始，預測返回動畫的開發人員選項已遭移除。對於已全面或在活動層級啟用預測返回手勢功能的應用程式，現在會顯示返回首頁、跨工作和跨活動等系統動畫。如果您的應用程式受到影響，請採取下列行動：

• 請確認應用程式已正確遷移，可使用預測返回手勢。
• 確保片段轉場效果可與預測返回導覽功能搭配運作。
• 請移除動畫和架構轉場效果，改用動畫器和 androidx 轉場效果。
• 從 FragmentManager 不瞭解的返回堆疊中移除。請改用由 FragmentManager 或 Navigation 元件管理的返回堆疊。

使用者強制停止應用程式時，小工具會停用

If a user force-stops an app on a device running Android 15, the system temporarily disables all the app's widgets. The widgets are grayed out, and the user cannot interact with them. This is because beginning with Android 15, the system cancels all an app's pending intents when the app is force-stopped.

The system re-enables those widgets the next time the user launches the app.

For more information, see Changes to package stopped state.

媒體投放狀態列方塊會提醒使用者分享螢幕畫面、投放內容和錄製畫面

Screen projection exploits expose private user data such as financial information because users don't realize their device screen is being shared.

For apps running on devices with Android 15 QPR1 or higher, a status bar chip that is large and prominent alerts users to any in‑progress screen projection. Users can tap the chip to stop their screen from being shared, cast, or recorded. Also, screen projection automatically stops when the device screen is locked.

確認應用程式是否受到影響

根據預設，應用程式會包含狀態列方塊，並在螢幕鎖定畫面啟用時自動暫停投放螢幕畫面。

如要進一步瞭解如何針對這些用途測試應用程式，請參閱「狀態列方塊和自動停止」。

背景網路存取權限制

In Android 15, apps that start a network request outside of a valid process lifecycle receive an exception. Typically, an UnknownHostException or other socket-related IOException. Network requests that happen outside of a valid lifecycle are usually due to apps unknowingly continuing a network request even after the app is no longer active.

To mitigate this exception, ensure your network requests are lifecycle aware and cancelled upon leaving a valid process lifecycle by using lifecycle aware components. If it is important that the network request should happen even when the user leaves the application, consider scheduling the network request using WorkManager or continue a user visible task using Foreground Service.

淘汰項目

每次發布時，特定 Android API 都可能會淘汰，或需要重構，以提供更優質的開發人員體驗，或支援新的平台功能。在這種情況下，我們會正式淘汰過時的 API，並引導開發人員改用其他 API。

淘汰是指我們已終止對 API 的官方支援，但開發人員仍可繼續使用這些 API。如要進一步瞭解此 Android 版本中的重要淘汰項目，請參閱淘汰項目頁面。