https://docs.bazzite.gg/Installing_and_Managing_Software/Updates_Rollbacks_and_Rebasing/rebase_guide/

This should answer most, if not all of your questions.

It’s important to remember, that you should rebase to the same DE to avoid issues. Although there shouldn’t be any data loss when rebasing, a backup of your files is recommended.

Edit: Forgot to write, that these principles apply to all atomic distros. But depending on the distro you’re using, the rebasing commands might be slightly different. So always look on the documentation of your distro.

Seems like I’ve found the culprit: https://github.com/Magisk-Modules-Alt-Repo/trichromelibrary-squoosh

When I deactivate this module and try again, the error message disappears and shows up again when enabled.

deleted by creator

I don’t want bloatware and Google services on my phone. I want to install magisk modules and use root. If a phone doesn’t allow unlocking bootloader and doesn’t have decent custom rom (or GSI) support, there’s no way I’m buying it.

That’s what I’m using:

https://gitlab.com/mudlej_android/mj_pdf_reader

I would advise to use open-source software wherever you can. You (almost) never have paywalls, ads or trackers there ;)

You can use an OTP Generator like Aegis Authenticator from F-Droid. Afaik it even works offline, so there should be no risk if you strictly keep it offline.

Sounds interesting. Do you have a source for the mentioned research?