> <@hapssmak:matrix.org> Could someone please explain what kind of attacks that the auditor app informs you about?
> 
> Like, is it a malicious OTA or?

I do'nt know what an OTA is but my very basic understanding is that the auditor app (which is a fantastic creation in its own right) just basically compares the current Graphene OS image with the one you have on your device, and if there is a difference it fires an alert. I am not sure if it actually hunts for vulnerabilities, more just any differences in the OS which shouldn't be there, which of course is most likely or at least could be a vuln/risk. I use it via the attestation.app site for my Pixels.