It's very weird move of them or at least I don't understand it.

Isn't this the idea of "OAM unlock" and why do you allow it if you're going to block partial functionalities on a hardware level...

ch0k1

This isn't really something we can fix reliably right now. The Play Integrity library is hardware-backed verification. It will block anything that isn't stock. In practice we could spoof apps to pretend they are an older device that passes play integrity but Google fights against that and will kill support for said device if they know it's being used for spoofing.

We don't want to deliver something that could in practice stop working later.

final

I don't use payments on my phone, so not sure.

Best way to check is [their official discussion board](https://discuss.grapheneos.org/)

nullama

security

GrapheneOS: Everything you need to know about the privacy-focused Android fork

Unfortunately, GrapheneOS currently has some limitations like the usage of the NFC chip for payment as well as some apps (very small amount to my knowledge) which can't be run on it but I think it's about time for GrapheneOS devs to figure out a fix.