Record invoices in the Cashew app by scanning the QR code on Portuguese invoices
About this app
CajuScan is a mobile Android application, developed in Flutter, that simplifies expense recording in Portugal. The app allows you to scan the QR Code (ATCUD) present on Portuguese invoices, automatically extract transaction data, and send it to the financial management app Cashew.
The goal is to automate the manual process of entering expenses, saving time and reducing errors.
Features: - Scan ATCUD QR Codes from Portuguese invoices - Automatic data extraction (amount, date, vendor, etc.) - Integration with the Cashew app for financial tracking - Simple, usability-focused interface
Developed with privacy in mind: no tracking, no ads, no data sent to external servers.
Open source under MIT license — contributions are welcome!
Licensed under MIT, by Roberto Cc.
What's New in v1.0.8
Imported from the F-Droid repository index.
- - Added the smart account prediction engine with suggestions based on local history.
- - New confirmation interface based on interactive cards and integrated bottom sheets.
- - Added a dynamic search bar to the merchant management list view.
- - Created a dedicated page for account management and added support for direct imports via Cashew share intent or local file.
- - Updated the backup system (.json) to include accounts and prediction engine history.
Version history
Jun 22, 2026 · 57.6 MB · Android API 24–36 · code 9
Imported from the F-Droid repository index.
- - Added the smart account prediction engine with suggestions based on local history.
- - New confirmation interface based on interactive cards and integrated bottom sheets.
- - Added a dynamic search bar to the merchant management list view.
- - Created a dedicated page for account management and added support for direct imports via Cashew share intent or local file.
- - Updated the backup system (.json) to include accounts and prediction engine history.
SHA-256 93e0e594be174504900a1104138f2fbe6e76cec94067e101b102ba5166562ec6
Jun 11, 2026 · 57.2 MB · Android API 24–36 · code 8
Imported from the F-Droid repository index.
- - Import categories from Cashew: CajuScan now appears in Cashew's share sheet, allowing categories to be imported directly without leaving the app.
- - Manual import: New option in Settings to load a category export from a JSON file.
- - Confirmation before replacing: When importing, a dialog shows the number of categories found before any changes are made.
SHA-256 b69b8c1c595af1b72fd0e1d57d190ed50b42ba506132557e5809dfb9a0932163
May 11, 2026 · 57.2 MB · Android API 24–36 · code 7
Imported from the F-Droid repository index.
- - Importação de Ficheiros: Nova funcionalidade para ler faturas a partir de ficheiros PDF ou imagens da galeria.
- - Controlo de Scan: Adicionada opção nas Definições para alternar entre scan contínuo ou regressar à Home após cada leitura.
- - Interface Ergonómica: Botões reposicionados na parte inferior do ecrã para facilitar o uso com o polegar.
- - Melhorias na Navegação: O fluxo de saída do scanner agora respeita a preferência configurada pelo utilizador.
- - Estabilidade: Tratamento de erros otimiz
SHA-256 293a6cd86796d6e074bcf4f80a5ccf783708fada7901f6aa9fe4efe94a8e33c8
Will it run on your device?
92%
- Runs on a broad range of modern Android versions.
- Multiple CPU architectures are covered.
- Aligned with the latest Android target SDK expectations.
Installation Guide
Open Settings on your Android device
Go to Security → Unknown sources (or Install unknown apps)
Enable "Allow from this source" for your browser or file manager
Open the downloaded APK file from your Downloads folder
Tap "Install" and wait for installation to complete
Launch the app from your home screen
Make sure to re-enable Unknown Sources restrictions after installation for security.
How to install this safely
How to verify the file you downloaded
Before you install anything, confirm the file is the one described here. On a computer, run shasum -a 256 your-download.apk (macOS or Linux) or certutil -hashfile your-download.apk SHA256 (Windows), then compare the output character-for-character with the SHA-256 on this page. If a single character differs, the file is not the build we recorded — delete it.
What the signing certificate proves
Every Android app is signed with a private key that only its developer holds. The fingerprint on this page is a hash of the matching public certificate, and it proves continuity rather than identity: it tells you a build came from whoever signed the earlier ones. Android enforces this at install time — if a package claiming to be com.marotoweb.cajuscan_app is signed with a different key, the system will refuse to install it over your existing copy. A fingerprint that changes between releases is worth pausing on, because a repackaged app that has been modified by someone else cannot keep the original signature.
How to roll back to an earlier version
If the current release misbehaves, 1.0.7 is the last build before it. Android will not install an older version code over a newer one, so you must uninstall CajuScan first — which clears its local data unless you have a backup. Reinstall the older APK only if its signing fingerprint matches the build you already trust, and check the API range: an older release may target an Android version your device has moved past.
Why we list sources instead of hosting everything
The official store channel is almost always the right choice: it updates automatically and carries the publisher's own distribution guarantees. A direct APK is useful when a device has no store access, when a rollout has not reached your region, or when you need a specific version — and only when the publisher has authorized that copy. APKBrowse does not list pirated, cracked, or unauthorized rebuilds of CajuScan, and a listing is removed when the evidence for it stops holding up.
Get CajuScan
Every source we list for com.marotoweb.cajuscan_app is legality-reviewed. Pirated or cracked builds are never offered.
Other sources
F-Droid listing
officialF-Droid builds this app from source and signs it. This is its official listing, with older builds and full release notes.
Source code
verified publisherThe upstream repository this build is compiled from.
We check legality and signature continuity, but device behaviour still varies. Install at your own discretion.
App Information
Security Verification
We record provenance; we do not run malware scans. Verify the hash yourself before installing.
SHA-256 Hash
93e0e594be174504900a1104138f2fbe6e76cec94067e101b102ba5166562ec6
Signing certificate
b1bd4eb13022a25b6b0ac9b079ea255feac109d7a613c9448c287ee822ab19b2
Permissions Required
Previous Versions
The signing certificate fingerprint for this release is on record, so a build that does not match it did not come from this publisher.
Report a problem with this listing
A listing is only as good as its corrections. If a source is broken, a signature looks wrong, or this app should not be here, tell the moderation team.