Have you tried searching before commenting?
https://github.com/Universal-Debloater-Alliance/universal-android-debloater-next-generation
not sure about win/mac, but for android yes they do keep record of stuff like what apps are being launched and upload/sync to google account. it’s not hidden though… it is(was) literally available on google account history or something (was about 7 years ago)
regarding keystrokes there was a case of a famous chinese keyboard app doing dubious stuff. not sure if i can say it’s on a os level but i’m pretty sure more than a few chinese phones ship with that. https://citizenlab.ca/2023/08/vulnerabilities-in-sogou-keyboard-encryption/
codeberg seems to be working well for me. i got too many cloudflare captchas with gitlab.com.
I use this and rsync the folder. https://f-droid.org/packages/com.github.tmo1.sms_ie/
And then the next screen asks if I want the VPN app to block ads, trackers and/or malware. (https://support.mozilla.org/en-US/kb/how-do-i-change-my-privacy-features) I already have Pihole on my network, so I don’t enable those features either.
Those DNS blocklist features are on Mullvad as well. FYI your PiHole won’t work while connected thru VPN, if it does you’re leaking DNS.
Luckily, as of today I can still set my user agent to something like a Playstation or ancient firefox/IE to get a lightweight HTML-based page. The results are in www.google.com/url?q= format but I can use a redirector extension for that.
they are usually about a specific device. These are the few I’m in.
t.me/eureka_roms (Exynos 7884/5 Galaxy phones)
t.me/eliteroms_sexynos (Exynos 5443, 8890, 8895, 9810)
t.me/exynos9820oss (Exynos 9820)
t.me/LGG7V40Customs (LG’s SDM845 devices)
oh shit. I used to use this but removed later after realizing it wasn’t open source.