The real problem is that the security model for apps on mobile is much better than that for apps on desktop. Desktop apps should all have private storage that no other non-root app can access. And while we’re at it, they should have to ask permission before activating the mic or camera.
Earplugs (in case a movie or concert etc. too loud) Linux boot disk (I saved a friend’s laptop this way once) keys, phone (gross), credit card, ID, pads