Default should be to choose from a random list of .onion service resolvers known to be running their own local resolver. Possibly rotate resolver each Q query or N seconds. This is a decent upgrade from defaulting to exit nodes which often resolve directly by upstream google or comcast.
If we agree, let’s talk about implementation and I will contribute it if necessary. If not, let’s riddle out why not.
testing note: dns ip leak test to determine that resolver is handling his own resolver cache. Resolver’s clearnet IP probably doesn’t need to be secret.
inquiry: best way to perform test? Perform dig on host which returns final upstream resolver? What if no cache hit though?