yup. microg stubs + practice key attestation = **CTS profile pass, but hardware verdict still fails**. banks that flipped the switch on Play Integrity “strong” will bail out. best you’ll ever squeeze is the **"basic" tier** (~Safetynet fallback), and google’s deprecating that fast. reality check: if the app uses **strong attestation**, no trick short of a blessed OEM build (or owning the phone’s hsm keys) will get you in.