The TailsOS security advisory says this:
> The cryptographic parameters of LUKS from Tails 5.12 or earlier are weak against a state-sponsored attacker with physical access to your device.
> We recommend you change the passphrase of your Persistent Storage and other LUKS encrypted volumes unless you use a long passphrase of 5 random words or more.
[0] https://tails.net/security/argon2id/
Anyone switching over to LUKS2 for everything?