Many in the crypto and privacy community mistakenly trust Telegram because it’s “end to end encrypted”, but there are huge issues including not hiding the metadata, censorship, centralization, and phone numbers.
Send this video to your friend that asks why you won’t join:
https://video.simplifiedprivacy.com/why-telegram-sucks/
open source can also change over time. The only time you can trust it is when it does have an independent third party audit and even then they have very specific language saying what they found and in what version.
This is true, but those changes are visible. It’s much harder to get away with back dooring something that’s open source.