(no title)

I would be keen to see more of this list, as two of the three items you mentioned are not at all interesting or useful to me (and, I would presume, to a majority of other users).

Even the other item (#1) is somewhat academic, as modern security practices are generally "good enough" for most people in most use cases. (That is, there is certainly room for improvement, but where we are now isn't nearly as bad as it could be.)