How Untouch works
from code to Play Store
Untouch combines Google Cloud Build infrastructure, AWS security services, and Play Console APIs to deliver a complete Android release automation platform. Build, sign, and release Flutter, React Native, Expo, and Kotlin apps without complex scripts or manual steps.
5 steps from code to Play Store
A predictable, automated release pipeline for Android teams
Connect
Configure
Build
Observe
Release
1. Connect your GitHub repository
Step 1Connect your GitHub repository to Untouch with a single authorization.
Untouch requests minimal permissions: read access to your code and webhook events for push notifications. Your source code is cloned during builds and never stored permanently. All repository access is logged in the comprehensive audit trail for security compliance.
Key Features
- ✓Supports Flutter, React Native, Expo, and native Kotlin projects
- ✓Webhook-driven builds (push, pull request, manual triggers)
- ✓Organization-level repository access with role-based permissions
- ✓Multiple apps per organization with shared team workspace
2. Configure once, reuse forever
Step 2Untouch automatically detects your Android build configuration: Java version, Gradle version, NDK version, SDK levels (compileSdk, minSdk, targetSdk), and framework-specific settings.
Configuration is stored securely in PostgreSQL, not scattered across shell scripts. Your signing keys are uploaded once, encrypted with AWS KMS at rest, and injected securely at build time. Keys are never exposed in logs, UI responses, or API calls.
Key Features
- ✓Auto-detect build environment (Java 17, Gradle, SDK versions)
- ✓Signing keys encrypted at rest with AWS KMS
- ✓Choose default Play Store track (internal, alpha, beta, production)
- ✓Configure machine type for build performance
- ✓Set up build approval workflows for team oversight
3. Isolated builds on Google Cloud
Step 3Each build runs in a completely isolated Google Cloud Build container. Your code is cloned fresh, dependencies are fetched from scratch, and the build executes with your exact environment configuration—ensuring reproducible results every time.
Build logs stream in real-time to Untouch's backend and are stored in PostgreSQL for 7-30 days (based on your plan). Build artifacts (APK/AAB files) are uploaded to Google Cloud Storage with pre-signed URLs that expire after 24 hours for secure, time-limited access.
Key Features
- ✓Fresh Docker container per build (no shared state)
- ✓Fair scheduling with queue position visibility
- ✓Build duration tracking and cost estimation
- ✓Automatic detection of slow and flaky builds
- ✓Credit-based usage billing (not time-based)
Security is built in, not bolted on
Enterprise-grade security without the enterprise complexity
AWS KMS encryption
Signing keys are encrypted with AWS Key Management Service. Keys are decrypted only during build execution and never exposed in logs, UI, or API responses.
Role-based access control
Fine-grained permissions at organization and app level. Every action is logged in the audit trail with user ID, IP address, and timestamp.
Build isolation
Each build runs in an isolated Google Cloud Build container. No cross-project contamination or shared dependencies.
4. Real-time visibility and observability
Step 4Build logs stream from Google Cloud Logging in real-time, categorized by log level (DEBUG, INFO, WARN, ERROR) and build step. All logs, artifacts, and metadata are stored in PostgreSQL and Google Cloud Storage.
Every build tracks commit SHA, author, build duration, queue time, credits consumed, and failure reasons. Build history is fully searchable by state, date, and branch.
Key Features
- ✓Live streaming logs with step-by-step progress
- ✓Build duration tracking and estimated completion time
- ✓Queue position visibility with estimated wait time
- ✓Artifacts retained based on plan (7-30 days)
- ✓Failed build analysis with clear error messages
- ✓Build approval requests and rejection tracking
5. Play Store automation and monitoring
Step 5Untouch integrates directly with Google Play Console APIs for automated releases. After a successful build, artifacts can be automatically uploaded to your chosen track (internal, alpha, beta, or production) with automatic version code management and release notes.
Beyond releases, Untouch continuously syncs Play Store data: user reviews, ratings, crash reports, and in-app purchase orders. You can reply to reviews, track subscription status, and monitor refunds—all from the Untouch dashboard without logging into Play Console.
Key Features
- ✓Auto-upload to internal, alpha, beta, or production tracks
- ✓Version code and version name auto-increment
- ✓Rollout percentage control (phased releases)
- ✓Release notes management per version
- ✓Monitor and reply to Play Store reviews
- ✓Track in-app purchases, subscriptions, and refunds
Build approvals for team oversight
Require manual approval before production builds or Play Store releases. Perfect for teams that need oversight on critical deployments.
Request approval
Builds can be configured to require approval before execution or release
Review and approve
Team members with approval permissions can review and approve or reject
Audit trail
All approvals, rejections, and reasons are logged in the audit system
Scheduling, fairness, and credit-based billing
Transparent, predictable, and fair for everyone
Fair Scheduling
Untouch uses a fair scheduling system with transparent queue management. Builds are queued based on your plan's concurrent build limit, available monthly credits, and burst credit balance.
You always know your queue position, estimated wait time, and why a build is queued. Higher-tier plans get priority scheduling and more concurrent build slots.
Credit-Based Billing
Credits represent actual compute usage — not arbitrary time limits. Each build consumes credits based on machine type, build duration, and framework complexity.
Unused credits roll over, and burst credits are available for traffic spikes. Usage is tracked per organization with detailed breakdowns by app and time period.
When things fail (and they will)
Clear visibility and actionable insights when builds don't go as planned
Build failures
Clear logs with error highlighting, preserved artifacts for debugging, and structured failure reasons. Untouch automatically detects slow and flaky builds to help you identify patterns.
Capacity limits
Transparent queueing with real-time position and estimated wait time. Upgrade paths shown when you hit concurrency or credit limits — no silent throttling or surprise charges.
Usage visibility
Detailed usage dashboard shows credits consumed per build, per app, and per time period. Track monthly credit usage, burst credit consumption, and cost estimates for each build.
Built for production reality
Untouch combines Google Cloud Platform's build infrastructure with AWS security services, PostgreSQL for reliable data storage, and direct Play Store API integration. It's designed for teams who care about repeatability, security, auditability, and long-term reliability — not just green checkmarks.