There are magisk tweaks to help combat this but its a annoying game of cat and mouse. Some apps like chase have particularly annoying root detection to deal with. Also regaring safteynet once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible (most tweaks try to spoof older phones that don't support safteynet hardware attestation).
Widevine
Many streaming services (Netflix, Hulu, Disney, etc) will downgrade your video quality to 480p-540p due to L3 from unlocking the bootloader (a step thats usually required before you can root).
Physical security (potential risk)
Unlocking the bootloader is the first step to allowing for rooting and custom roms. One pro/con is when you unlock the bootloader you are partially at risk to a evil maid attack (some one with physical acess to your phone can compromise it). While difficult to do automatically (and probably very very rare) some one could hypothetically place a malicious bootloader that could steel data. The risk of this is mostly low but does exist.
once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible
Never gonna happen. Full hardware attestation would give Google all the cards and too much power over manufacturers. Samsung is the largest Android manufacturer and they're making people jump though hoops to unlock bootloader precisely because they don't want to end up with full attestation.
Samsung and Google have been locked into a power struggle for many years now and they're both careful about keeping the armistice. Samsung maintains a set of apps that mimic Google's, ready to go in case Google ever pulls a Huawei and kicks them off Play.
These are not really genuine concerns imo, and to the extent that they are - they should be recognised as shortcomings of an increasingly inflexible ecosystem.
It's very easy to avoid root detection these days, and if you are rooting your phone, chances are you have also disabled the playstore app altogether so play protect is no longer a concern. I just use F-Droid and Aurora these days to reduce what can be associated with me or any of my accounts.
Who the hell is watching shows on their phone so much that a reduction to SD is going to bother them on a 6 inch screen?
If I can get my hands on your phone physically, there's very little you can do to keep me out regardless of if the bootloader is unlocked or not.
Pixel phones are arguably the worst for rooting. (I own one) In order to get the phone to pass properly you pretty much have to go custom on the ROM.
I'm running a stock firmware, and I get all sorts of problems as a result of rooting the device, and not installing a CFW.
I have 2 apps, that won't work (google pay and a credit score check/lock appand Microsoft intune - which my work partially uses)
Edit and did I mention? The LSPosed zygisk module causes so much instability I can't use it.
I have yet to see a problematic app that deny list can't handle
Stremio /s to be fair I have never bothered about this in my phone, as I have a Nvidia Shield TV, and honestly any current setup box (official) would do the job, there are perks of using a movie of course... But I can use Netflix here only that I have never bothered to check out the quality, I wouldn't be surprised if a module for this existed to be honest.
I bet most people are interested in scamming those dudes that compulsively tap in game ads to fetch their crypto BS apps or whatever, it is a similar scenario of why hackers target Windows and not Linux users... Granted every device is at risk once it connects to the Internet.
Few problems:
There are magisk tweaks to help combat this but its a annoying game of cat and mouse. Some apps like chase have particularly annoying root detection to deal with. Also regaring safteynet once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible (most tweaks try to spoof older phones that don't support safteynet hardware attestation).
Many streaming services (Netflix, Hulu, Disney, etc) will downgrade your video quality to 480p-540p due to L3 from unlocking the bootloader (a step thats usually required before you can root).
Unlocking the bootloader is the first step to allowing for rooting and custom roms. One pro/con is when you unlock the bootloader you are partially at risk to a evil maid attack (some one with physical acess to your phone can compromise it). While difficult to do automatically (and probably very very rare) some one could hypothetically place a malicious bootloader that could steel data. The risk of this is mostly low but does exist.
Never gonna happen. Full hardware attestation would give Google all the cards and too much power over manufacturers. Samsung is the largest Android manufacturer and they're making people jump though hoops to unlock bootloader precisely because they don't want to end up with full attestation.
Samsung and Google have been locked into a power struggle for many years now and they're both careful about keeping the armistice. Samsung maintains a set of apps that mimic Google's, ready to go in case Google ever pulls a Huawei and kicks them off Play.
These are not really genuine concerns imo, and to the extent that they are - they should be recognised as shortcomings of an increasingly inflexible ecosystem.
It's very easy to avoid root detection these days, and if you are rooting your phone, chances are you have also disabled the playstore app altogether so play protect is no longer a concern. I just use F-Droid and Aurora these days to reduce what can be associated with me or any of my accounts.
Who the hell is watching shows on their phone so much that a reduction to SD is going to bother them on a 6 inch screen?
If I can get my hands on your phone physically, there's very little you can do to keep me out regardless of if the bootloader is unlocked or not.
Pixel phones are arguably the worst for rooting. (I own one) In order to get the phone to pass properly you pretty much have to go custom on the ROM.
I'm running a stock firmware, and I get all sorts of problems as a result of rooting the device, and not installing a CFW.
I have 2 apps, that won't work (google pay and a credit score check/lock appand Microsoft intune - which my work partially uses)
Edit and did I mention? The LSPosed zygisk module causes so much instability I can't use it.
I have yet to see a problematic app that deny list can't handle
Stremio /s to be fair I have never bothered about this in my phone, as I have a Nvidia Shield TV, and honestly any current setup box (official) would do the job, there are perks of using a movie of course... But I can use Netflix here only that I have never bothered to check out the quality, I wouldn't be surprised if a module for this existed to be honest.
I bet most people are interested in scamming those dudes that compulsively tap in game ads to fetch their crypto BS apps or whatever, it is a similar scenario of why hackers target Windows and not Linux users... Granted every device is at risk once it connects to the Internet.