[flowinho]

Gotta step in as a GrapheneOS User. You have multiple options.

The easiest and most approachable one is: install Aurora Store from F-Droid. It gives you access to Google Play + App Updates without logging you into Google. This almost feels identical to Google Play itself.

Next: think about install the Experimental GMS Support that GrapheneOS offers. If you e.g. absolutely need an App that has troubles working without Google SDKs embedded, this might be an option. This is documented in the Usage Guide of the Website.

https://grapheneos.org/usage

However, just dont forget that you wanted a Google-FREE Phone. So dont overdo installing proprietär stuff.

Oh and stay as far away from MicroG as possible, it seriouly cripples the security of GrapheneOS by a lot.

[josephcsible]

> Oh and stay as far away from MicroG as possible, it seriouly cripples the security of GrapheneOS by a lot.

Doesn't this severely limit which apps you can install?

[atatatat]

Severely? Not even close.

[Raed667]

> Oh and stay as far away from MicroG as possible, it seriouly cripples the security of GrapheneOS by a lot.

I'm using MicroG on an unrooted stock Android just to be able to use Youtube Vanced.

What am I risking here?

[passerby1]

> stay as far away from MicroG as possible, it seriouly cripples the security of GrapheneOS by a lot.

Do you mind sharing some details on this? I did not hear strong statements like this one before.

[0xdeadb00f]

IIRC It requires allowing apps to mimic other app's signatures and pretend to be them, "signature spoofing". MicroG mimics the Google play services signature.

But that is really crippling, because apps can now spoof other apps signatures, essentially apps can pretend to be other apps. That opens a lot of opportunities for an attacker.

[bnr]

With the set of patches used eg in lineageos4microg, spoofing is restricted to the microG core app.

[0xdeadb00f]

You're still taking a risk. its a risk that I won't take but you're welcome to for the sake of convenience.