All LLM-output is slop. There's no good LLM output. It's stolen code, stolen literature, stolen media condensed into the greatest heist of the 21. century. Perfect capitalism - big LLM companies don't need to pay royalties to humans, while selling access to a service which generates monthly revenue.
Whether it trained on real world "stolen" code is an implementation detail. A controversial one, but it isn't a supporting argument for whether it can write high quality, functional code or not.
I came from a poor background and stole pretty much all the textbooks I used to learn programming as a kid. I also stole all the music I listened to while studying them. Is everything I write slop for the same reason?
No. You're a human, who went through real life experiences. You learned, developed as a human being. You made mistakes and grew from them. You did what you have to do to advance. What you output has intrinsic value because of all this. I argue that even when you roll your face on your keyboard, the output is more valuable than ten pages of slop output from an LLM, since it's human, with all the history, experience, emotions and character which came before it.
I don't know why this got downvoted. I've already been so frustrated by HN LIDAR mindsets but holy shit.
Human society exists because we value humans, full stop. The easiest way to "solve" all of humanity's problems is to simply say that humans aren't valuable. Sometimes it feels like we're conceding a ridiculous amount of ground on that basic principle every year - one more human value gone because it "doesn't matter", so hey, we've obviously made progress!
Agreed. I think that sometimes people on HN lose sight of what is actually important, which is human flourishing. The other day there was someone arguing that the best thing to do to fix loneliness problems in society is to remove the human need for socializing. Which... is certainly one way to fix the problem, I guess, but completely missed the point. The point is not to fix a mismatch between essential human desires and what we can attain, the point is to work on fulfilling those desires! Just something goes with nerd autism, I guess.
> I don't know why this got downvoted. I've already been so frustrated by HN LIDAR mindsets but holy shit
The extreme sides (proponents, opponents) are clear, opposites, and fight each other. More nuanced takes get buried as droplets in a bucket. Likely a goal.
> Human society exists because we value humans, full stop.
Call me cynic, but I do not believe every human being agrees with this sentiment. From HR acting as if humans are resources, to human beings being dehumanized as workers, civilians, cannon fodder, and... well, the product. Every time human rights are violated, and we do not stand up to it, we lose.
I have a very simple question as human right: the right for a human being to know the other side is a human being yes or no, and if not: to speak gratis (no additional fee allowed) to a human being instead. Futhermore, ML must always cite the used sources, and ML programmer is responsible for mistake. This would increase insurance costs so much, that LLM's in public would die, but SLM's could thrive.
>Human society exists because we value humans, full stop.
Eh, human society exists because it is an emergent behavior of the evolutionary advantage afforded at the time of adoption by the human species. There is on iron rule stating that it must continue into the future, or even that it can exist into the future.
More so, the value of a human has wildly fluctuated over history and culture. The village chief, nobles, the king were all high value humans. The villagers would be middle to low value, and others may be considered no value.
The industrial age began to change this some as value started to move from the merchant class to the villager class as many high production jobs needed less and less training to complete. With industrialization businesses running machines and production lines needed as many people as they could get. Still human rights were hard fought in places like America where labor wars broke out.
In the modern US we've setup a dangerous set of idealism that will most likely end in disaster because they are in conflict with general human values. That is the "pull yourself up by your bootstraps", "Any collective action is communism and communism will turn you into a pillar of salt if you dare look at it", and "greed is good". Couple that with TV media and social media owned by rich billionaires you're not going to see much serious opposition to these ideals.
But if/as labor loses it's values, so will the humans that performed that labor. After decades of optimizing human society for maximal capital extraction, values are dead, and the ever present thought police owned by the rich will make sure you don't cause too much trouble by resurrecting them.
I'm fine with calling all LLM outputs slop, but I'll draw the line at asserting there's no good LLM output. LLM output is good when it works, and we can easily verify that a lot of code from LLMs does work. That the code LLMs output is derive of copyrighted works is neither here nor there. First of all, ALL creative work is derivative. Secondly IP is absurd horse shit and we never should have humored the premise of it being treated like real property.
That's maybe a problem of east Germany in particular. I see Balkonkraftwerke (small balcony solar arrays, 1-4 modules with a microinverter plugged directly into an outlet) everywhere when I drive through major west German cities, even on rental apartment balconies.
> 1-4 modules with a microinverter plugged directly into an outlet
Interesting, is it really that simple and legal/up to code/safe? My naive assumption is that feeding back to mains would be more complex/costly that that but very cool if not.
These sorts of inverters are grid-tied so they turn themselves off when theres no grid to sync to (eg during an outage). My understanding is that's the main safety issue, and backfeeding while the grid is up is mostly a regulatory concern (as long as you have a modern meter that can tell the difference between electricity going in vs out)
As long as the inverter feeds at most 800W. That's about 4A, on a circuit designed for 16A. You need a new meter, but the old analog meters can run backwards and you can continue using it until you power company replaces it. You do have to register the setup, but that seems to be a quick process. And if you lose power the inverter turns off
Perfectly fine (at least here in the US) as long as your power meter is new enough to not double charge you for feeding back into the grid if your home draw drops low enough. Micro inverters are starting to really take off in modern solar installs to cut down on wiring distances since you can feed it into nearby AC circuits.
German here. I pay around 24c/kWh. It's much cheaper than it was in late 2022 with the energy price shock due to russia attempting to blackout Europe. I cannot imagine how much worse we would be off, would our Power generation stem from fossil or nuclear fuel.
More renewables is the answer. We need to build so much that power becomes almost free (already the case in the summer at high noon, see [1]).
If it's almost free, then even electrically cracking molecules to make hydrocarbons and ammonia compounds is cost-competitive if you can quickly start and stop production, which would be really interesting. Those processes don't have to be very energy efficient if the capital and operating costs are relatively low. That last sentence does a lot of work though.
I think we should solve the "It's cloudy sometimes" problem with state built, extreme oversupply. Also giant solar farms in the southwest and large HVDC power lines to send that everywhere.
There's zero reason why "We make more power than we use most of the time" ever has to be a "problem". I think we should have so much unused power that it makes sense to suck CO2 out of the air to make fuel and chemical feedstocks. Air capture at that scale would be an insane engineering and manufacturing problem though.
You probably shouldn't vote for me though. I have dumber ideas too. But the "Lets do Solarpunk for real" one is probably not harmful to anyone. Except for a bunch of rich families in Texas.
Terraform is working on that - burstable synthetic methane generation using cheap catalysts that you can afford to idle, only generating methane when electricity is cheap.
I have a rooted LG WebOS TV. It's really nice. I can ssh into it. It's on a dedicated VLAN which has all LG domains and IP firewalled off. It can connect to Youtube, using a version of the Youtube app with integrated adblocker and sponsorblock. It's absolute superb.
Do you have any recommended links for such a setup? I don’t connect my TV to the network and use it with an Apple TV. But I’m interested to know more on this.
If not, you can try and find one on Ebay or local classifieds that is. That's the hardest part.
Then you setup a VLAN (I use OpenWRT, which has great support for this) and some firewall rules that forbid all traffic that isn't port 80 or 443. Then you create a dnsmasq blacklist for all the LG domains (good list is [1]).
>Not sure how they can expect to make a viable full OS without massive use of LLMs, so this makes no sense.
Humans have been doing this for the better parts of 5 decades now. Don't assume others rely on LLMs as much as you do.
>Not to mention that even finding good developers willing to develop without AI (a significant handicap, even more so for coding things like an OS that are well represented in LLM training) seems difficult nowadays, especially if they aren't paying them.
I highly doubt that. In fact, I'd take a significant pay cut to move to a company that doesn't use LLMs, if I were forced to use them in my current job.
Hugely unpopular opinion on HN, but I'd rather use code that is flawed while written by a human, versus code that has been generated by a LLM, even if it fixes bugs.
I'd gladly take a bug report, sure, but then I'd fix the issues myself. I'd never allow LLM code to be merged.
Because human errors are, well, human. And producing code that contains those errors is a human endeavor. It bases on years, decades of learning. Mistakes were made, experience was gained, skills were improved. Reasoning by humans is relatable.
Generating slop using LLMs takes seconds, has no human element, no work goes into it. Mistakes made by an LLM are excused without sincerity, without real learning, without consequence. I hate everything about that.
For the parent there's immaterial value knowing that is written by a human. From what I read in your comment, you see code more as a means to an end. I think I understand where the parent is coming from. Writing code myself, and accomplishing what I set out to build sometimes feels like a form of art, and knowing that I build it, gives me a sense of accomplishment. And gives me energy. Writing code solely as a means to an end, or letting it be generated by some model, doesn't give that same energy.
This thinking has nothing to do with not caring about being a good teammate or the business. I've no idea why you put that on the same pile.
Reputation system and elected or at least transparent moderation is what's needed to curb any bad actors. In fact, identity verification would make it easier for spammers, just buy stolen identities in bulk in darknet for a few dollars and fire away. Facebook supposedly leans very hard into real identities and the end result is a dead wasteland of bots talking to bots. And on the other hand, there are plenty of regular forums with not a sign of bad actors, because they were collectively exterminated and the newcomers are vetted.
"If identity verification is what it takes to curb russian trolls, then be it."
It's far from being just Russian. China (wumao/50 centers) and the west have armies of them. The latter was out in force during the Covid business making sure everyone agreed.
In all three cases, we are talking about government agents (human or otherwise) who are the least likely to be affected by identity verification. They can come in by the back door.
That's just throwing the baby out with the bath water. In my experience, the best kind of online interactions are those where people don't have to be limited by what their offline ID is.
Why would anyone want any kind of non-politician-approved interaction? Are you a traitor or a paedophile? In fact give me all your chat history and let's go through it, because I have no idea what we'd even approve.
Oh and all your private photos too. Think of the children! (and let's NOT discuss that when it comes to child abuse in Europe BY FAR the biggest culprits are European government employees. School teachers, and people in youth services. That's >90% of all child abusers in the EU. The youth services part of that would be the EXACT individuals screaming about thinking of the children. Don't worry. They've put rules in the Chat Control legislation protecting themselves from ... well the law)
Google's hardware is just hardware. It is not locked down like the hardware of many other manufacturers. Moreover, it's the only such hardware which also allows you, the user, to lock it down for your own security. GrapheneOS is not just focused around avoiding Google, it's more accurately focused around security and user choice.
The goal is to give you the option to avoid needing to rely on Google's spying or services while not having to compromise on security.
None of these other solutions regularly get included in Celebrite's documentation as being an explicit benchmark of their software's ability to break into phones. And that's almost certainly due to the fact that unless you leverage hardware security features like what GrapheneOS (and stock Android on a Pixel, and iOS on an iPhone) utilises, you have no chance of going against any actual adversaries.
And I'm not just talking about state actors here, even drive-by opportunistic attacks are likelier on a random other phone running some other Android build.
So yeah, you are running Google hardware, that doesn't make you "googled". It's just a sad reflection on the reality of the hardware landscape. If you want the same security as what GrapheneOS offers, you will currently need to use a Pixel.
I'd be curious to see what comes out of their Motorola partnership though.
Why are we degoogling, for what purpose? I couldn't care less about giving them what likely amounts to ~10€ of margin per year on the hardware sale. What I care about is not giving them data which is worth a lot more than that, and to take back control over my device.
When you go with an alternative you lose superior privacy and security offered by GrapheneOS and you just end up leaking more data back to Google and other ad-tech companies than you would otherwise, negating any benefits several times over.
I think it’s very valid. I want to be hardware-independent, not only OS independent. I need graphene to work on a fairphone, jolla phone or whatever other alternatives there are. E/os can do that (to an extent), Graphene can’t for probably very good reason, but still: It‘s not an alternative then.
I must agree, you are right, GOS is only on Pixel phones.
But we have to keep in mind that /e/ has a lot of problems, the only one solved is sending data to Google. The security aspect of the OS is problematic and some key elements of a privacy seem questioning (AI integration, commercial collaborations, ...).
Uploading speech-to-text to OpenAI? Regular communication with Google? Using Google for assisted GPS? Giving a bunch of Google apps privileged access (if you need them for e.g. Android Auto)?
Well and besides that only shipping ASBs and no other security updates outside major Android releases (and both usually late). Using heavily outdated kernel trees (e.g. FP4 is using a Linux kernel patch level that hasn't been updated since 2020!), outdated vendor firmware blobs, etc.
It might work, but it is not very secure, nor very private.
The OS is working well, but have privacy and security concerns.
Is it better than a stock OS? I don't know, maybe, maybe not, it depends on the stock OS.
Reading the links posted in a sibling thread it only does it if you have text to speech enabled and they use an anonymizing proxy so openai can't associate sessions with any particular user ie it's not perfectly anonymous and private but I don't see how you could have totally anonymous and private until you have a fully offline on-device TTS model, which the fairphone guy said they tried and didn't feel it was up to scratch.
I don't use e/os but it doesnt' seem like a terrible compromise to me personally.
/e/OS is Android, meaning it's still critically dependent on goodwill of Google to continue releasing their work as part of AOSP.
So if you're trying to be a silly purist, then /e/OS doesn't fit either. If you're not, getting a Pixel will significantly enhance your safety since they're better supported for security patches and better designed in hardware when it comes to security.
I think it is legitimate to be a purist about smartphones, but I don't think the GP is. So, let's talk about the non-purist situation: Users like us want to de-google. But we are not willing to make all of the sacrifices that purists do. The question is then, what can we use (and - what projects can we support financially).
Now, we can use GrapheneOS if we have Google Pixel's. But - most people don't have those phones, for any number of reasons. One of them is price, by the way: You can get a decent smartphone for under 100 USD and even a half-decent one for 70 USD. And most people in the world are not in an economic situation where you can tell them "shell out 300 USD and buy a Google Pixel".
Moreover - suggesting we strengthen our ties to Google in order to de-Google is fundamentally problematic. Even if we're not going all the way, we are striving to distance ourselves from them.
So, an imperfect software solution for a wider selection of phones does sound quite useful. Change my mind! :-)
Could you not do this? There's no need to be hostile to people who purer than you are.
It's fine if you want to make a pragmatic decision to do what works now, but you depend on people who to some degree don't want to compromise. But I always suspect this type of hostility comes from guilt being directed outward; what you actually should want to do instead is support people who are refusing to compromise and building alternatives (even if those alternatives are just ways to get things done without phones.) You will need them one day.
The idea about being dependent on Google to continue to allow you to be hostile to Google on their hardware is intrinsically not sustainable.
You're basically the same as an somebody using whatever the phone company installs mocking somebody who would dare install GrapheneOS, or even an iPhone person ridiculing somebody for using Android at all. What's the use of that?
At least GrapheneOS is releasing up to date OS versions and patches very quickly, quicker than all the vendors except Google.
And in terms of the security, they release binary patches for the exploits under embargo until...... mid-2026. Remember November 2025 security bulletin? Multiple RCEs, media wrote articles about that.... Meanwhile GOS was long patched.
What is the most recent version? 3.5. What Android revision is it based on? Lineage 22.2, which is Android 15.
It also claims that it includes "all Android security patches available as of February, 2nd 2026" .....but not all patches get back ported, meaning they miss many fixes and improvements.
And that's just the start.
Tbh I'd rather run Lineage Os on the older phone that this.
The post about Graphene partnering with Motorola is right about this one, currently, (Lenovo bought Motorola from Google in 2014.), so that point will no longer be valid as soon as they ship something.
GOS is degoogled in all the ways that I care about - it's about the data they can gather. Among all the smartphone options that I consider usable day to day (leaving only Android and iOS at the moment), GOS is the most private and secure.
As someone who switched from FP4 with /e/OS to GrapheneOS - absolutely not true.
My reason for switching was a bug where the phone calls didn't display the caller number. So I switched to GOS in hope it would be better... and it is, but not in all areas. For example their insistence on not supporting MicroG leads to poor UX, because let's face it, you can't trust Google services, even sandboxed, to not syphon tons of data into the cloud. MicroG was easybto use for privacy. They also seem to be very opinionated about (not) using a firewall for privacy, like NetGuard, instead recommending some weird alternatives like DNS firewalls. And don't get me started on their icons - I don't mind ugly-ish icons, but they are taking the ugliness to a whole new level.
GrapheneOS is not a bad OS, but it is very opinionated, and they (heavily) prioritize security over privacy. When I turn FP4 on, I still like it way better than GOS. Still, I like seeing who is calling, so I'm not going back... Ymmv.
It is not, it is related to both major phone service providers in my country. Abroad, everything worked just fine. And just in 4G/5G, however 3G is getting phased out, so if I forced it, I was often unreachable.
I was wondering if I could fix it myself, but I'm not even sure if this is firmware or OS issue. I assume the former, which afaik is not opensource? Not sure.
I am not a project member so I cannot speak for GrapheneOS, but maybe I can help clear up some misunderstandings.
>insistence on not supporting MicroG leads to poor UX,
The problem they are trying to solve is apps not working without the presence of Google Mobile Services or Google Play. They don't want to compromise by having a component with high privileges integrated in their image that involves security issues like signature spoofing.
MicroG will send less data to Google partly because it is simply an incomplete implementation of the features offered by GMS (sanboxed-google-play appp compatibility is quite a bit higher), partly because the access is more granular or there are choices offered for services like location (GrapheneOS provides non-Google location services and community support on only installing and enabling the parts you need for specific app features to work). UX is not adversely affected, but if you want to use a privileged app bypassing security checks and sending data to Google anyway then you have the freedom to compile microG with it integrated if you would like.
>They also seem to be very opinionated about (not) using a firewall for privacy, like NetGuard, instead recommending some weird alternatives like DNS firewalls
GrapheneOS tries to implement or end encourage sustainable approaches to privacy and security, and this partially means approaches that don't break if the adversary knows what you are doing.
Egress/outbound traffic filtering is fundamentally unworkable. Apps do not have to connect to known privacy a invasive third party domains to violate your privacy or expose your data to extra parties, they can simply send anything they want to their own servers and do anything they like with the data. From my understanding this is why GrapheneOS do not want to encourage the approach of blocking apps from connecting to certain domains/addresses.
Instead they tackle the problem at its source by providing a direct AND indirect network access toggle which cuts off an apps access to the outernet without letting the app know (pretends the network is down). This makes it non trivial for apps to exfiltrate data and as a side effect can provide benefits like data conservation (for capped plans).
>instead recommending some weird alternatives like DNS firewalls.
DNS based solutions are offered (not promoted) if you want more control over your DNS query resolvers or you want to improve your quality of experience by blocking advertisements and malvertising domains.
>they (heavily) prioritize security over privacy.
Can you point out another OS project with real privacy features like a network permission, sensors data access permission, contact access scopes, storage access scopes, per connection MAC randomisation and so on? https://eylenburg.github.io/android_comparison.htm They have even more plans for privacy like location scopes, anti-fingerprinting for Vanadium browser and maybe AnonymisedDNSCrypt/Oblivious DNS and probably more they haven't mentioned. If you suggest some more on their issue tracker they may get back to it when they have the resources.
To put my answer in context, I was replying to this:
> There's absolutely no reason to use /e/ when GrapheneOS exists.
There absolutely is. If I was choosing again today I would be tempted to switch back, for the reasons I listed. And I would probably miss many things you cited, like Storage and Contact Scopes.
As for MicroG, afaik I can't use it on GOS without considerable effort (recompiling OS) and probably also ongoing maintenance burden (updates). So this is not an option for me, FP5 with /e/OS is still better then.
NetGuard - very nice answer, shows exactly what you and GOS developers are missing! Yes, the actively hostile apps will exfiltrate data as soon as you let them contact anything on the outside. But most of the apps are by incompetent/lazy/pressured devs who just throw in some library and don't even care that it leaks data to Google. For example my banking app. Why the hell should Google be notified when I decide to open my banking app? If I cut its network, as you suggested, the app stops working. But if I just blacklist Google site for this app, the problem is solved. Of course, I don't want to cut it for all apps, because then some might not work. And that's just one of many similar examples.
That's why I said that the main focus of GOS is security, not privacy. If they cared about privacy primarily, they would actively support microG and NetGuard, or at least similar solutions.
That said, I am actually a fan of GrapheneOS, it is just so frustrating that we can't have it all in one package. Ah well.
>are by incompetent/lazy/pressured devs who just throw in some library and don't even care that it leaks data to Google
Even if I agreed with this statement, I don't understand why it is better to put limited/precious resources something the app developers can easily circumvent, praying they never stop being incompetent/lazy/pressured and tell device owners it is an important privacy feature? Instead of waiting for the apps to become actively hostile why not just feed them fake data in the first place? Like the scoped access permissions do?
If you really want to do this, you (and any GrapheneOS user) can do it today with mitmproxy and RethinkDNS but I think it is perfectly OK users choose their (privacy-invasive) apps and choose how to mitigate annoyances like that themselves. Otherwise they need to complain to the app developers and app stores.
>That's why I said that the main focus of GOS is security, not privacy. If they cared about privacy primarily, they would actively support microG and NetGuard, or at least similar solutions.
That feels more like you are framing your opinion as a fact. To me it is not so obvious.
When I think of privacy, I think of Privacy Enhancing Technologies (https://petsymposium.org/). I also think of things like:
If you can use GrapheneOS, good for you but what /e/OS offers is:
- Usable Android with your usual Android app (banking, etc)
- No data sent to Google by default
- Easier interface with nearly no bloatware
- Available easily on many smartphones, including older ones
- Extending the life of some smartphones
The price to pay is:
- Some Murena cloud bloatware
- Android security patches are sometimes delayed
- Security is not on par with GrapheneOS
If your main concern is protecting your privacy from Google and extending the life of your smartphone without breaking a sweat, /e/OS is probably the best option.
If your main concern is protecting against state actors attacks or very specific threats, then GrapheneOS might be better.
/e/OS works really great for non-techie users. I’ve done it in my family.
I have phones with both, but I don't necessarily agree that /e/OS is easier. E.g. things like doing or restoring in-app purchases often do not work, even when logging in through microG. Want that nice backup option that Signal is now offering? Well, good luck, you cannot purchase it on /e/OS (at least I couldn't). In general when it comes to compatibility, my experience is that GrapheneOS is better because it can use real Google Play Services, albeit sandboxed. I think you can use the Play Store on /e/OS as well, but it's going to have higher privileges.
They also use Google for assisted GPS when you use it, eSIM provisioning, widevine provisioning. Last time I checked, microG on /e/OS also downloads a Google binary blob for SafetyNet.
Besides analytics, if you install Google Apps (e.g. for Android Auto), many of them get higher privileges on /e/OS.
The price to pay is:
I would also add installing F-Droid apps (if you use App Lounge) through 'CleanAPK', without wanting to reveal why this is necessary or who owns/maintains CleanAPK.
They do quite a lot of fishy stuff. It may be incompetence, but yeah...
If your main concern is protecting against state actors attacks or very specific threats
This always sounds like systems like GrapheneOS are for paranoid people. But this is basically you if you ever go to a demonstration (e.g. in the US) or cross borders of certain countries (e.g. of the US), sadly things like Cellebrite have become very common. Then suddenly layered protection, not running years behind in security patches, a duress pin, or rebooting after not unlocking for a few minutes to get back to BFU aren't so bad. (IANAL, figure out yourself which of these are legal and not destruction of evidence.)
GrapheneOS is just another OS. It's no less usable than /e/ and it is no more difficult to get a phone with it than /e/. You can purchase both preinstalled.
I find it interesting that there are so many comments that are saying "Don't use this one use this one it's better!"
But what I think a lot of people are missing is what you exactly just touched on. We have options! That's a good thing. Yeah, some options are not as good as others if you wanna optimize for X. Then don't use that option! Use the option that works for you.
To me, the fact that alternatives exist on varying spectra of "degoogle-fication" is a win in my book. The fact that we're able to talk about and recommend so many alternatives is a good thing.
I think it's not a bad thing that people make the "Don't use this one use this one it's better!" comment, at least from my perspective. That is one way I end up learning about the options I have!
There absolutely is when your concern is not only moving away from Google but also using sustainable hardware like Fairphone, which GrapheneOS doesn't support afaik.
Even on non-pixel devices, unless you really want to use the /e/ "ecosystem, there are probably better options like LineageOS for microG iodéOS.
(/e/ used to be heavily based on an outdated version of LineageOS for microG. I'm not sure what the current state is after I settled on second-hand pixel with graphene)
iodé is available for my device as well, but it looked fairly similar to /e/OS to me (and the latter has an official partnership with my phone's manufacturer). What makes it a better option - should I switch?
When I looked into it, /e/ constantly used to be many months late with security updates. LineageOS for microg and iodé were much quicker (~ 1 month max which is still not that great).
Hmm, possibly I'm looking in the wrong place, but as far as I can remember, I've been getting new /e/OS versions about every month, and looking at the release notes [1], they usually seem to include the latest "Android security patches", which I assume is what's relevant - unless there's something else that should also be included?
It gets Android OS feature updates not security/firmware updates. GOS aims to be the most secure OS possible without compromise so they aren't supporting devices without them.
Pixel 3a only offered 3 years of security updates. Current GOS supported devices support up to 7 years.
Because upstream LineageOS doesn't support microg out of the box. You can install it but it needs signature spoofing to pass Google's SafetyNet garbage.
Bonus point for some roms that allow you to relock the bootloader after the install (iodéOS, CalyxOS).
reply