Two assumptions are made by a typical user: discord is somewhat trustworthy, the data is only controlled by discord. These are both incorrect but it is understandable why they make such an assumption about a large platform like discord. Without the knowledge of how things are scrapped, one might not think it is even possible.
I think this meets your requirements: https://www.f-droid.org/packages/com.best.deskclock/
I can have a 15 min timer going at the same time as a 37 min one, and have them saved on creation to a list. Best clock app ive found that is feature rich and FOSS
I can ruin your reputation or be used in conjuction with other social engineering techniques to eicit fear. It is also very intimate and personal, and shows a private side of your person that may not be intended for others. Examples of threats could be sending them to in-laws, emoyeers, your whole office, the school were your kids attend. Even without any really intention of distributing it, the threat is enough.
Iirc cromite supports Android and windows ATM. Check the repo here: https://github.com/uazo/cromite
Updating using obtanium works good.
It depends on what browser and what extensions. Previously addon could be fingerprinted by detecting what web resourves they used (i think just chromium). On firefox extensions can get detected by sensing certain telltale changes they provide. eg. Inserting js in dom or blocking of ad/tracking domains. Even if the extension itself isnt identified, unique settings and multiple content blockers will make kinds of fingerprinting possible.
https://eylenburg.github.io/android_comparison.htm