I'd like to download an android social app from Play.
It lists the ability to act as an account authenticator, including obtaining passwords of my other accounts.
Is it possible that it would pass on passwords to other apps/websites?
I assume it is technically possible.
If so, what is stopping it from doing so and would it be possible to detect that it had done so?