[Firerouge]

At worst, having root should be the most that's required, which only on some phones requires a custom rom.

Android has built in support for location spoofing with the developer mode option, select mock location app.

[realharo]

Other apps can easily check whether the location comes from a mock source and discard such data.

https://developer.android.com/reference/android/location/Loc...

[mindslight]

These type of security vulnerabilities are due to the core OS/APIs being developed by a surveillance company that isn't concerned with user privacy, and they're countless.

There isn't enough will in the Free world to mitigate even the most glaring ones either, such as LineageOS not incorporating the MicroG patches. The end result being more forks, more confusion, and groups of users remaining unprotected.

Commoditize your complements, indeed.