Open source has nothing to do with an audit, VeraCrypt is also open source and got an independent audit, so this is not a ridiculous request. If you call it "privacy" or security people automatically think it has something to do with security and you know that exactly. How does it protect someone's privacy if he for example login into the Reddit app? Even if the app doesn't send anything back or only faked data, Reddit still sees everything you post and based on that you're quite unique, so they don't even need any fingerprinting to triangulate a social profile from you, the better "manager" here would tell you that you should be careful what you post on social networks/websites, which Xprivacy doesn't mention, in fact you have to root your phone to flash and get access to TWRP/bootloader to install a beta framework which requires an additional application/module, I see this not as privacy/security related because you run into possible fake downloads (which is still a problem).
I also don't see how this manage anything if the user needs to setup everything on his own. Which research you're talking about you never provided something I could check. I don't make your work here, nor did I advertise my stuff as "privacy manager" or security-related product that's the difference. That you refuse to give an example shows only that you're unable to handle criticism. I see this "program" here same as AV products, snake oil because it might take a focus on several samples but doesn't clearly mention that this doesn't mean people are more private/secure.
Nothing is perfect but that wasn't the point here, I request to take a look on your research, or to get an insight view and you simply refuse it, that's why I call the product a scam. No app ever made you more private/secure, I say this as clear as possible. No one needs your app, the best advice is to install or uninstall the apps, use the foss alternative apps and choose the services which someone connects to wisely instead of trusting questionable promises with beta frameworks which never got a serious audit. I think the original developer never said that this is security wise tested, which I agree in but he never said or advertised it as "manager" or **** like this.
This project here has nothing to do with privacy/security and as long as you refuse to provide any evidence I will call you out as someone which scam people because you also not mention that Android also evolved and that there already several mechanisms in order to restrict permissions, block internet etc.
XPL doesn't talk about being careful to post stuff on social media because that is assumed to be common sense, at least for people who care about privacy. XPL is a tool, not meant to educate people on IT topics not directly related to what XPL does.
XPL "manages" the hooks into other apps it uses to fake or hide data. Maybe you mistook the term "privacy manager" as something that offers a complete solution to all privacy related topics. This is not correct.
You can't always uninstall apps that are a threat to your privacy, and unfortunaley it is unrealistic to find a viable alternative to every app that does shady stuff in the background.
Android has its own permission system, but it's not sufficient. The best example: your clipboard. The #1 place where users copy their passwords. And yet, every app can access it at any time without restriction. Permissions like camera, microphone access etc. do work, but an app can see when you deny the permission request and refuse to function. Usual apps can't detect whether the camera is really not available or XPL is faking it.
By the way: Have you ever looked up "non-violent communication"? You may not have heard of it, but it is a very useful soft skill to have. For example, insulting someone and their work is usually not the most effective way to get them to do what you want.
Edit: Altering the Android Code directly is not an option, since a lot of the open APIs (like the clipboard) would break a lot of apps if they were closed off. Also, providing custom fake data, custom hooks etc. is too advanced for the average consumer, and would thus confuse a lot of people if it was added to Android.