Use case or problem
Plugins that send users data to 3rd parties (e.g. GPT-based plugins), do not properly alert users that their data will be leaving the privacy of their computers to be processed at a remote server, likely becoming algorithmic training data. There needs to be a more proper mechanism to ask for users’ consent on sending data out of Obsidian, particularly given that privacy and local first are two of Obsidian design principles.
Upon submission, ask plugin developers to include a pop-up/UI feature that alerts users of their data leaving to the cloud, along with a brief explanation/link expanding on how that data will be used. Additionally, plugins that interface with 3rd parties, should add this information to their GitHub readme as a disclaimer at the top of the document.
Another option will be to create a plugin template, specific to plugins interfacing with 3rd parties, that automatically integrates these features and requires plugin developers to keep them if they want to submit.