Checking connection…
Just a moment
Link Verified!
Opening the app now…
Invalid link
Open this page using the QR code
shown on the host device.
BeckerBox Remote
Your phone has labeled
BeckerBox as "Unsafe"

This is expected behavior . BeckerBox runs locally on your computer, so your phone cannot verify it the same way it verifies regular websites on the internet.

This does not mean BeckerBox is dangerous. It means your phone is being careful because the page is opening from your own computer instead of a public website.
Why does this happen?
Why does this happen?

BeckerBox runs on your computer — right where you scanned the QR code.

Since it is not a public website, companies like Google cannot check and label it as "safe" in the usual way.
That is why your phone shows an "unsafe" warning. It is a normal result of opening a local page, not a sign that something is wrong.

Think of it like a neighbor handing you a note directly versus receiving a letter through the postal service — both can be trustworthy, but only one goes through an official process.

How it works
How this works behind the scenes
BeckerBox is hosted on your computer. Your phone connects directly to that computer over your local network instead of reaching a public server on the internet.
  Certificate Authorities

Modern browsers rely on HTTPS and trusted certificate authorities (CAs) to verify websites. These are globally recognized organizations that confirm a site's identity is legitimate.

  The missing link

A locally hosted server like BeckerBox does not have a certificate from a public CA. Your phone cannot verify its identity using the standard trust chain.

As a result, the browser displays an "unsafe" warning. This reflects the lack of external verification, not the intent or safety of the app itself.
Detailed breakdown
Detailed technical breakdown
  Local binding

BeckerBox binds to a private IP (192.168.x.x or 10.x.x.x). Your phone connects directly to that address over the local network when you scan the QR code.

  HTTP — unencrypted

Traffic is unencrypted. Browsers flag this as "Not Secure" because there is no TLS layer protecting the connection.

  HTTPS — self-signed cert

The server presents a certificate during the handshake. For the browser to trust it, the cert must chain back to a trusted root CA in the device's trust store. BeckerBox uses a self-signed cert, which cannot be validated this way.

Additionally, the certificate:
Does not match a publicly registered domain name
Is issued for a local IP address or hostname
Is not included in certificate transparency logs

This is expected for locally hosted servers and internal tools operating within a private network without public domain verification.

One-time setup
Follow these steps — only needed once