Personally, I would lock down automatic consents as much as possible:
You can implement a consent workflow to allow trusted apps and trusted perms:
I get your what you are asking, but I think a balance is needed here and teaching users to be aware of the apps they are using and understanding what they are allowing is a good thing and - along with the consent workflow - also protects your org.