It really depends on the type of attack. Our Mobile SDK supports Proof Key for Code Exchange - PKCE (rfc7636) out of box that prevent MITM attack for features like Social Login or any other authentication using the Authorization flow from oAuth 2.0.
The current version of the SDK (v1.5.00) do not include any feature for auto detect Rooted / Jailbroken devices but those topics are for sure in our radar.
Please also keep in mind that the Mobile SDK is open sourced and can be easily forked and enhanced.
Thanks and best regards.