Someone who trusts Tunnelblick enough to let it run programs as root, but doesn't trust it enough to run a program in the background as a user is, in my opinion, straining at a gnat and swallowing a camel. That's why I was "spouting technical details": I assumed that someone who is objecting to a background program is concerned about the resources it would use. I didn't realize that you are objecting to the very existence of the background programs – I read your original post as complaining (rightfully) that the name "Jonathan Bullard" is deceptive. It is deceptive! But it's not Tunnelblick that shows the misleading name; it's macOS. macOS used to show the name of the program, now it shows the name of the person who digitally signed the program. That's why I "blame Apple". The Tunnelblick developers are, of course, at fault for not adjusting more quickly to Apple's change, but we all are volunteers, have limited time to work on Tunnelblick, and we each have our own priorities.
Nobody complained about the existence of the "Tunnelblick" login item, nor did anyone complain when the other one was named Tunnelblick-LaunchAtLogin; you're the first one (as far as I can remember) that is saying that Tunnelblick should have no background items. (People complained when it was named "LaunchAtLogin", but only because they didn't know where it was from; we fixed that by renaming it to Tunnelblick-LaunchAtLogin.)
1) Engineer Tunnelblick so that it does not *require* Login Items to perform its basic function.
The Tunnelblick developers don't believe that is possible (assuming the basic function is to connect and disconnect a VPN securely). If you have a way to do it, let us know!
2) *ASK* the user if they want to enable Login Items when the app is first installed.
3) If the user declines the login items, disable the functionality that depends on those login items (kill switch, etc.)
We could do that but it makes everything more complicated, for the program and the users. Why don't you ask for that as an enhancement, or better yet, propose changes to Tunnelblick's source code to implement that, on
GitHub? See what other people think about it.
I'm much more inclined to tell the users installing Tunnelblick about the existence of the background items, why they are necessary for the full functioning of Tunnelblick, and then let them install Tunnelblick (or not), and let them live with their decision to disable the login items if they do so. That's on my list, but there are other things on my list that I consider a higher priority.