This is probably a bit of a dumb question, but I'm curious as to why, rather than reaching out to the individual banking app devs, one couldn't try to reach out to Google themselves and fix the issue at the root by getting GrapheneOS certified on that side ?

    orydeatemi My guess would be that it's an independent project that does not require Google services, and that it makes changes to the OS, that MAY NOT be approved by Google.

    orydeatemi The idea is technically sound, but this is not a technical issue.

    Google's Android partners, such as Samsung, are bound contractually, which GrapheneOS is not. In theory, if Google certified GrapheneOS, the GrapheneOS team could immediately replace the legitimate OS with malware.

    Google's business model is certifying device manufacturers under contract. GrapheneOS is neither a device manufacturer nor under contract.