Generally, I would also suggest to suggest such security enhancements such as related to SysRq or Blacklist more kernel modules to reduce attack surface or others also to other security/privacy focused projects, such as:
- Qubes
- Tails
- Hardened Gentoo
- https://clip-os.org
- Alpine
- GrapheneOS
- Security-focused operating system - Wikipedia others?
The purpose of this is to increase the security of the whole ecosystem. Would good would we be off if security of Whonix / Kicksecure would be “perfect” but at the same time:
- Debian package build servers compromised
- Debian maintainers compromised
- Tor relays compromised
- etc.
More reasons:
- more brain power reviewing suggestions and perhaps being inspired to make further suggestions
- wider testing
- wider use (bugs more easily caught)
- more easily convinced doing the same by Whonix default if others are doing the same