https://youtu.be/FLgPJa-pxeI GrapheneOS: the private & secure mobile OS with full Android app compatibility. Key features & selling points: • Built from AOSP with massive privacy & security hardening (stronger sandboxing, exploit mitigations, hardened malloc/libc, attack surface reduction) • Privacy by default: no Google apps/services included or used out of the box • Optional sandboxed Google Play compatibility layer (install & use Play Store/services in isolation without giving them special access) Advanced permission controls & Storage Scopes (better than standard Android storage permissions) • Multiple user profiles for isolation (e.g. sandbox Google in a separate profile) • Vanadium: hardened privacy-focused browser (based on Chromium) • Built-in secure Camera app & other minimal first-party apps • Long-term official support on Pixel devices with rapid updates & verified boot • Non-profit open source project focused on real adversaries, not marketing fluff Sandboxed Google Play on GrapheneOS is a killer feature for folks who need Google-dependent apps but hate the invasive integration on stock Android. Key points: • Official Google Play releases (Play Store, Play Services, etc.) install as fully sandboxed, unprivileged regular apps—no special access or privileges at all. • GrapheneOS adds a compatibility layer that "teaches" them how to function properly inside the standard app sandbox (unlike stock Android where they bypass it and get massive privileged access as system components). • No deep OS integration: GrapheneOS never uses Google Play as a backend for system services (location, push, etc. are handled natively or rerouted). • Install via the built-in App Store: just select Google Play services—it pulls in the official ones + Store. • Best paired with multiple user profiles: put sandboxed Google stuff in a separate profile (or work profile/Private Space) to isolate it from your main apps/data. Apps in the same profile can interact with consent, but cross-profile is blocked. • Privacy/security wins: Google can't silently access other apps' data, track you OS-wide, or exploit privileged holes. You control all permissions like any other app. • Compatibility is near-perfect for most things (push notifications, in-app purchases, Play Asset Delivery, etc.), with only a tiny subset of truly privileged features unavailable. • Location requests default to GrapheneOS's own reimplementation (using OS location API) for better privacy—can toggle back to Google's if needed. Trade-off? Still some Google telemetry if you use it, but massively reduced attack surface and no forced bundling. Overall, great usability, no major sacrifices for most apps. Install via official web installer.grapheneos.org BIGGEST DRAWBACK: Only really meant for Google Pixel Phones... #privacy #security #degoogle

GrapheneOS on Motorola? https://youtu.be/Y5GrbhB2HHQ