Tap the button below on a device with VeSync app installed. The deep link opens the in-app WebView, calls the JS bridge, and exfiltrates the session token.