TL;DR
- Efforts like Graphene OS face increasing pressure from apps that refuse to run on non-standard Android.
- The custom ROM project characterizes Google’s approach to device attestation as incomplete and flawed.
- Graphene OS is prepared to take legal action if Google won’t let it pass Play Integrity checks.
ngl a unlocked bootloader would be a security nightmare but you can put any rom on any android 8+ device they are called gsi roms
How does one flash a ROM without unlocking the bootloader these days?
Shouldn’t that break Android Verified Boot?
A pure GSI image could use a Google key, I suppose, but others shouldn’t, right?
You have to unlock it fire and flash the gsi rom
So, like a desktop or laptop? Sounds fine to me.
I’m not an expert, but I had an expert explain that an unlocked boot loader is only risky if you think someone nefarious is physically able to get their hand on your phone. Is that true?