Elk9877 I'd suggest reading this comment by the project account: https://discuss.grapheneos.org/d/10650-drm-provisioning-and-internet-access-pinning-why-choose-gos-servers/14
It's not possible to spoof the strong checks for a Google certified OS. The non-strong checks can be spoofed by pretending to be an obsolete device without hardware attestation, but they're cracking down on this spoofing in different ways and it's eventually going to be entirely ruled out by requiring hardware attestation across the board. It's pointless for a production OS to mess around with this. GrapheneOS needs to be something people can depend on rather than knowingly hacking around something we know is guaranteed to stop working.