My everyone role has nothing. Absolutely no permissions at all. Folks do not even show up in the member list. I have PhantomBot assign a role and permissions instead. As @everyone is controlled by Discord, what is to stop them from adding new security rules with automatic opt-in settings?
By service I mean the service outside of my control - Discord. The Bot is fully within my control
Someone mentioned today why would Microsoft partner with Discord when they have Skype. Simple, at my business I can self-host the Skype for Business Server and then be in full control of the server - same with Mattermost (I am moving my team away from Slack), I can self-host. Since I cannot self-host Discord, and have no control over their server releases, I choose not to provide trust.
…and besides, I can edit the database and remove the entry if I want (again, full control)