I’m seeing a growing number of apps on my GrapheneOS device fail with the generic “rooted / jailbroken device” message. It feels less like individual developer decisions and more like a systemic issue. Many apps today aren’t built entirely in-house but rely on shared mobile frameworks. In Switzerland, for example, a large number of apps that are also popping up in the threads here (PostFinance, AGOV, UBS, etc.) are built on Nevis’ mobile framework. See also here: https://www.nevis.net/en/customer-stories
These mobile app frameworks in turn integrate third-party mobile app security solutions for root/jailbreak detection. Nevis explicitly lists digital.ai as security framework:
https://www.nevis.net/en/nevis-id/features/fraud-detection-and-account-security
https://digital.ai/products/application-security/mobile-app-security/
Some apps still work partially, which suggests that certain developers work around parts of the framework. But if the root detection logic sits in widely used security SDKs, GrapheneOS users risk being locked out app by app as updates roll out.
It seems that meaningful compatibility would need to happen at the level of these shared security frameworks, not at the level of each individual app. The open question is how do get those app security framework vendors to support GrapheneOS?