Fix #15: PCI-DSS compliance - remove persistent CVV storage from Flutter apps

siro_driver/lib/controller/home/payment/credit_card_Controller.dart

@@ -17,21 +17,6 @@ class CreditCardController extends GetxController {
     String? cardHolderName =
         await SecureStorage().readData(BoxName.cardHolderName);
     String? expiryDate = await SecureStorage().readData(BoxName.expiryDate);
-    String? cvvCode = await SecureStorage().readData(BoxName.cvvCode);
-
-    if (cvvCode != null && cvvCode.isNotEmpty) {
-      final maskedCardNumber = DigitObscuringFormatter()
-          .formatEditUpdate(
-            TextEditingValue.empty,
-            TextEditingValue(text: cardNumber ?? ''),
-          )
-          .text;
-
-      cardNumberController.text = maskedCardNumber;
-      cardHolderNameController.text = cardHolderName ?? '';
-      expiryDateController.text = expiryDate ?? '';
-      cvvCodeController.text = cvvCode;
-    }
   }
 
   @override
@@ -64,12 +49,10 @@ class CreditCardModel {
   String cardNumber;
   String cardHolderName;
   String expiryDate;
-  String cvvCode;
 
   CreditCardModel({
     required this.cardNumber,
     required this.cardHolderName,
     required this.expiryDate,
-    required this.cvvCode,
   });
 }

siro_driver/lib/main.dart

@@ -252,6 +252,9 @@ void main() {
     await initFirebaseIfNeeded();
     await WakelockPlus.enable();
     await GetStorage.init();
+    // Purge any previously stored CVV (PCI-DSS compliance)
+    await storage.delete(key: BoxName.cvvCode);
+    await storage.delete(key: BoxName.cvvCodeDriver);
     await initializeDateFormatting();
     await SystemChrome.setPreferredOrientations(
         [DeviceOrientation.portraitUp, DeviceOrientation.portraitDown]);