I am all for this, which i think was the original intent of this topic. Kind of wild how things have changed on this topic since then, as OP was grilled pretty hard by staff, having the idea called “mad” and being asked if there was an ulterior motive.
I personally don’t see audits as having enough value added to being a minimum requirement (ie it should not be used to discount other VPN options on that basis alone) but its also not nothing.
I think this is the problem with audits as a criteria in general. The process around audits and who performs them are very nebulous to evaluate objectively. Which I think makes it a tough thing to be a minimum requirement.
Most users of PG are not going to understand the technical side of the audit, know anything about the auditor, or how to differentiate a good audit from one purchased for marketing. That to me seems like a slippery slope.