Avoid using your phone, don't install apps, don't rely on it for anything, and stick it in a drawer most of the time. Phones have ALWAYS been a bad bet for privacy, and we've been losing this cat and mouse game for years. I agree that what's happening lately seems like a real watershed moment, but the writing has been on the wall for a long time.
There's a part of me that wishes Firefox OS remained viable and overcame its problems where it could've become a viable alternative. I'm hopeful for the future of Linux phones, but I've yet to see a product that looks like it's reliable and works well..
The problem extends far deeper than just FOSS for mobile and IoT. There isn't competitive OSHW. The entire pipeline for silicon hardware development (PCB dev is relatively easy) is virtually locked away behind gates that require identity and/or address verification, node-locked trial licenses or sometimes big license fees paid to one or more big 3 EDA vendors. And that's even before getting anywhere need talking to a fab.
If memory serves me right, in early days of Android, Google engineers were writing drivers on behalf of manufacturers because OEM drivers were too buggy.
Think about the amount of work and the kind of talent this requires.
If you are starting from scratch today as a no-name company, I doubt any hardware manufacturers even want to talk to you.
I'll add to this that libadwaita is really good, and manages to scale applications between desktop and mobile extremely well. Far better than any other mobile-desktop convergence I've seen before. Flatpak also offers a very good method for distributing apps in an easy and largely decentralized way.
This is orthogonal to GrapheneOS; GrapheneOS's utility is being eroded by Device Attestation, but this change is irrelevant as GrapheneOS will already fail strict attestation.
Maybe I missed it, but assuming GrapheneOS doesn't adhere to this verification, or provides some OS-level way to disable it, what makes Graphene worse after this change?
GrapheneOS is only allowed to live because google lets it. This signals a wider ecosystem change that tells us that GrapheneOS is going to stop being usable when this generation of hardware dies. This generation or maybe the one after it.
What do you mean with "Google lets it"? GrapheneOS is based on AOSP.
GrapheneOS only runs on the Google Pixels, and Google may decide to render future Pixels unusable for GrapheneOS (e.g. by preventing to unlock/relock the bootloader).
But another Android manufacturer could get to the point where GrapheneOS endorses them. It feels like it shouldn't be that hard for an Android manufacturer, and they would immediately get quite some attention. Maybe not mainstream attention, but largely profitable, I think.
GrapheneOS exists only because the Pixel's bootloader can be unlocked. Google could remove that option anytime, making it impossible to install GrapheneOS.
Buy a Linux phone or contribute to development of the Linux phone ecosystem, and accept that while it may lag behind in features, it makes up for that in freedom and privacy. Potentially keep a cheap Apple/Android around for stuff like banking software that only works on them.
It seems like we're going from a reasonably acceptable option (GrapheneOS), to nothing.