Hello. I'm trying to come up with a smart way to install apps and keep as much security and privacy as I can. The thing I think I've settled on is downloading apps I would like to use which I consider at least mildly safe directly from their githubs and then installing them through the apks which Vanadium does. One such app that I've done this with is Orgzly.
In the process of doing this and stripping back all permissions to the app I noticed the following quote when looking at all app permissions then full network access:
"Allows the app to create network sockets and use custom network protocols. The browser and other applications provide means to send data to the internet, so this permission is not required to send data to the internet."
Does this mean that effectively disabling the network permission is not really stopping the app from using the network? That there is some kind of workaround through using the browser? I was under the assumption that the Network permission was the primary way we controlled this and that it took the place of a proper Firewall. Is that not true? Can anyone please help me understand what is going on and if I can deny all external communication to an app?