E: apparently it needs to be said that I am not suggesting you switch to Linux on your phone today; just that development needs to accelerate. Please don't be one of the 34 people that replied to tell me Linux is not ready.
Android has always been a fairly open platform, especially if you were deliberate about getting it that way, but we've seen in recent months an extremely rapid devolution of the Android ecosystem:
- The closing of development of an increasing number of components in AOSP.
- Samsung, Xiaomi and OnePlus have removed the option of bootloader unlocking on all of their devices. I suspect Google is not far behind.
- Google implementing Play Integrity API and encouraging developers to implement it. Notably the EU's own identity verification wallet requires this, in stark contrast to their own laws and policies, despite the protest of hundreds on Github.
- And finally, the mandatory implementation of developer verification across Android systems. Yes, if you're running a 3rd-party OS like GOS you won't be directly affected by this, but it will impact 99.9% of devices, and I foresee many open source developers just opting out of developing apps for Android entirely as a result. We've already seen SyncThing simply discontinue development for this reason, citing issues with Google Play Store. They've also repeatedly denied updates for NextCloud with no explanation, only restoring it after mass outcry. And we've already seen Google targeting any software intended to circumvent ads, labeling them in the system as "dangerous" and "untrusted". This will most certainly carry into their new "verification" system.
Google once competed with Apple for customers. But in a world where Google walks away from the biggest antitrust trial since 1998 with yet another slap on the wrist, competition is dead, and Google is taking notes from Apple about what they can legally get away with.
Android as we know it is dead. And/or will be dead very soon. We need an open replacement.
Would a pixel phone running GOS be future proofed, or one day Google can just push out some hidden updates that prevent you from running it at all?
Well if your not running Google's OS. how can they push updates. My issue with GrapheneOS is the trackers. It well not warn if trackers are following you and if you have trackers you well spam everyone with unknown tracker following you.
Tracker blocking uses flawed heuristics. The only methods that are typically used are static lists which is just badness enumeration. There is nothing stopping the app/service from sending the data down a different domain that isn't blocked or a domain that can't be blocked without breaking the service.
Adding to that, how do we even decide what is a "tracker"? What is the definition? Some might say it includes all telemetry or crashlytics. Are those inherently malicious?
I don't think it would make sense for GrapheneOS to include something flawed like a "tracker blocker" that lulls people into a false sense of security. They use robust and meaningful methods for improving the privacy and security of the OS.