/e/OS is not fully degoogled, as DNS connectivity checks, hardware attestation provisioning, and eSIM activation all go through Google.

It is often many weeks or months behind on security updates, especially in the WebView, which makes it easy to exploit.

It doesn’t support bootloader locking on many devices, and if you lock the bootloader on a phone that does support it, it could brick if /e/OS is on an older security patch than the stock ROM was.

It doesn’t use a lot of the hardening in GrapheneOS such as hardened_malloc which prevents memory corruption exploits, even if the hardware supports it.

And finally, /e/OS’s text-to-speech sends what you say to OpenAI, despite local options being available.

If you want a properly secure Android phone, the best option is GrapheneOS, however it only supports Pixel phones and future Motarola phones due to its high security requirements.

If you can’t get a Pixel then iOS in lockdown mode is the next best option, however if you can’t replace your phone, LineageOS is much worse than Graphene although it is still much better than /e/.

    • a_fancy_kiwi@lemmy.world
      185·
      19 hours ago

      Is it already time for the lead GrapheneOS developer’s annual crash out? Where do the years go?

      • Vik@lemmy.worldEnglish
        231·
        19 hours ago

        the fun thing is like, I use grapheneOS on a pixel 10 pro, though I find it kind of difficult to fess up to given the cringeworthy escapades of the graphene community.

        who pissed in their cereal? does the mere presence of other ROM projects attack their identity in some way? have they claimed to be more secure than GOS and others?

          • Vik@lemmy.worldEnglish
            12·
            18 hours ago

            Wow what a leap. note that i said community and not project members, though they’ve not been without controversy either. let’s not pretend micay wasn’t massively problematic,

      • Cris_Citrus@piefed.zipEnglish
        31·
        17 hours ago

        If I’m not mistaken that guy completely left the project like a while back now. Hasnt been involved in any way for a hot minute

        • exu@feditown.comEnglish
          6·
          15 hours ago

          AFAIK he’s just stepped down from being lead dev and still works on the projects. Doesn’t really feel different though because he’s still the only name I’d recognise online.