> <@auckland:matrix.org> > <@k9zq89_wvtm-qjfdwefjzsmngkroysx1t3mf3nqct49249r33w-7g-z8mqyujzicroyz49wlnc4840htlma03p4z-wb:privacytools.io> Ideally, it shouldn't be <a href="https://freenode.logbot.info/grapheneos/20201209#c6110116">your</a> job as a consumer, to maintain security of bootloader, vendor etc by building an OS.
> 
> Who determines that, the engineer's point of view or the consumer himself.

Should be job of the OEM/vendor itself. Sadly, most don't really care that much *shrugs*