n3t_admin This isn't true. Antivirus and any app can see the list of installed apps and read their installed APK files including their assets, native code, and Dalvik code. I also wouldn't call it snake oil, although the industry has lots of misleading marketing, and antivirus can never be a reliable security “solution”, unlike solutions like (for example) Android's sandboxing (which GrapheneOS improves with user-facing improvements like granting access only to specific files in shared storage and additional permissions) which are reliable security measures. For just scanning installed apps, an antivirus needs nothing but Network permission, and Notifications if you want. That's it. Many antivirus apps demand excessive permissions, I recommend avoiding them.
Sagebath Note that if you have Google Play Store installed, it comes with Play Protect built-in. I think it's also enabled by default. You can opt-in to scanning apps not recognized by Play Store too. Don't disable Play Protect because there's no good reason to disable it, and it might save your ass some day. Just don't rely on it thinking that you can be safe from malware because it's enabled.