App compatibility with GrapheneOS

thmf

beppi What's happening? Does it show any error message?

beppi

thmf No error messages, it asks me to log in, asks for a 2FA code via SMS, and when entered Ubank shows a spinner forever.

rjo12 I've just been running the app in my main profile for now, which works fine. But it doesn't seem to influence the PS version (whether I install it from Aurora, or from the "install available apps" option in the PS settings).

rjo12

beppi

Check settings related to exploit protections for that app. A number of banking apps do rely on some of those settings being relaxed, and you may not have relaxed them in your private space.

One other thing to try - also install the App in the Owner profile (and, optionally, disable it in that profile). I had one App which would only work (not crash) in either Workspace or Private Space if I did that. (Never worked why, but the need to do that persisted across a couple of versions of the App (and of GOS) - and was eventually resolved in another update).

Laitinlok

ZA bank has been blocking GrapheneOS and it doesn't use play integrity api at all

Sparks

I recently faced a problem with the app of the Dutch bank Rabobank. It uses Google Play Integrity API (GPIA). This app is for me not the only one, there are other apps as well which uses GPIA. I have the impression that more and more apps are experiencing problems. To stop the growing practice of Google I contacted Kim van Sparren, a member of EU Parliament. Her assistant adviced me to contact the Digital Markets Act to put complaints. Maybe the EU can do investigations in this specific practice of Google and the negative consequences for other OS's for Android? Just thoughts.

Probably9857

Sparks

IMO, this is like asking the fox to guard the chickens. This is the same EU that wants to ban E2EE messaging, right? And it is suggested that they should start telling developers which OSs they must allow or not allow? What could possibly go wrong?

Sparks

Kim van Sparrentak is a member of The Greens/EFA, known for their attention for digital freedom. Such sounds must be heard within the European Parliament. There are still people within the Parliament who do want keep the E2EE intact. Further, I think that within the EU Parliament there is growing awareness of the disadvantages of the dependency to the American tech-giants. Besides these arguments,, as a citizen of the EU I want to use the rights to contact the EU Parliament about this movement of Google.
Now I received the response from someone within the Parliament,, he thinks that the act of Google regarding the Google Play Integrity API may violate the EU competition law. That is why he advised me to contact the Digital Markets Act team about this issue.
In short, it is not about asking the fox to guard the chickens. And it is not about telling the developers which OSs they must allow. It is about preserving the freedom of choice and the freedom to not choose for the Google eco-system.

Ziya

akc3n for banking, I personally use pwa on vanadium.

Franco

Bad news, after the last update of "UBS Banking", it is working but there is a message:

Custom OS detected
Your Custom Operating System (OS) can run this app in its current version. However, future versions of this app eill not be compatible with your custom OS.

brbr9

Franco Had the same message today... Hope will we'll have a solution

Franco

brbr9
Let’s see, but I have little hope. This time it isn’t a bug; they’re informing us that we won’t be able to use the app soon, and they’re giving us time to take the necessary actions.

Iam not sure if the Access App will be concerned as well (to use the ebanking web) or only the banking app.

On my side i am checking alternative banking solutions.

The_Last_Digit_Of_Pi

I found this out after getting a new Pixel 10 pro XL.
Of course I installed GrapheneOS on it right away, and then I tried to install my apps.
The app from the bank who's the biggest supporter of CO² budgets and CBDC didn't make it.
I don't think all this is a coincidence.
I'm going into conspiracy land here, but I think "they" need an OS that works for them, not for you,
so they are able to put their Chat Control and other things on your phone without you wanting or knowing it.
It's something like the new Windows 11.
Not able to install banking apps on your phone, I call that Soft Debanking.
They want to install so much things on your phone in the future, and they can't do it with an alternative OS.
Banks say alternative OS' are not safe.
I think they mean it's not safe for them, because the user is in control.
It's no use asking banks, or begging banks to fix this.
I'm going to another bank.
Maybe that's a temporary fix, but it does send them a signal.

EverettHitch

The_Last_Digit_Of_Pi a signal most banks will ignore. Yet most banking works on the web, so calling it a debanking is an overstrech. You can easily use it on GrapheneOS too, just as we used to 20 years ago, when we had no apps.

The_Last_Digit_Of_Pi

EverettHitch
I called it a Soft Debanking.
It's bollocks that GOS is unsafe. They (Google, banks, government, CIA, FBI, the MOSSAD) act like a collective, and they don't like they can't do what they like to do with our phones, like they are going to do in Europe now with their Chat Control and DSA.
I think the pressure will grow in the future, because they need an OS controlled by Google, because if 20% of people is going to use an alternative OS, their Chat Control and other things they are going to implement are not going to work.
I don't only switch banks to send a signal, but also to have a functional app again.
Don't think they have good intentions and that they are going to listen to your concerns.

southrockstar

I really hope there will be a solution, this is actually very annoying. I mean, I need to start moving my money out of a bank (with all the burden of finding a good new one, check where that previous account was used and then transfers all the billing etc to the new one), just because I can't be free to choose what phone and OS to use. It's unbelievable.

HuIk

I read from another user that GOS will not have Play Protect Certification after partnering with an OEM

If GOS doesn't have Play Protect Certification, will certain banking apps still be incompatible, or is the Play Integrity API / SafetyNet Attestation API a completely different thing?

Posted here to avoid derailing

Cobalt-Eclipse

HuIk I looked into this a bit more and it turns out it’s basically a misunderstanding (luckily): GrapheneOS already isn’t Play Protect Certified, so a new OEM partnership (which is Motorola, by the way: here’s the link - https://motorolanews.com/motorola-three-new-b2b-solutions-at-mwc-2026/ | https://www.androidauthority.com/grapheneos-motorola-partnership-announced-3645710/) doesn’t change that. Play Protect Certification (the thing apps check via the Play Integrity API) needs Google Play Services to have deep, high-level root access to the OS. GrapheneOS purposely strips away those privileges, making Google Play Services run as a normal, unprivileged app in a secure sandbox. Since GrapheneOS won’t give Google that root access, Google won’t officially certify the OS.

That said, it doesn’t mean your banking apps (or others you can’t really do without) will stop working. Most standard banking apps don’t require this super-high level of hardware attestation and run just fine on GrapheneOS’s Sandboxed Google Play. Only a few apps that need absolute hardware-backed proof (like Google Pay) will still be incompatible.

The main risk is with certain institutions—like UBS—that actively try to block secure custom operating systems by enforcing Google’s strictest telemetry checks. This seems to be a growing trend that might become more common though.

chiguy1256

akc3n today I experienced an issue with the Navy Federal Credit Union app. I get the following message when I open the app: "Your device apoears to be modified. For security reasons, please use a different devicevto sign in." I uninstalled and installed and that didn't work. I also followed tge steps in this guide and no luck. I can use a web browser instead, but I'd rather use the app. Any suggestions? Thanks.

userofgos

chiguy1256 Based off of the report found in the Banking App Compatibility Guide, the app is not functional on GrapheneOS because they use Play Integrity. See here: https://github.com/PrivSec-dev/banking-apps-compat-report/issues/393

Edit: Looks like it wasn't functional when first reported, but is now functional. See here: https://discuss.grapheneos.org/d/4584-navy-federal-bank-app/55

chiguy1256

userofgos I reistalled again. Seens to be working now.

DefinitelyNotOCD

"GOV.UK One Login" app wont let me sign in: "There was a problem signing you in".

Tried all the fixes and allow all "Open by default" links; no luck.

« Previous Page Next Page »