I'd agree that open source should be standard with VPN clients.
Now, point 2 on their list is the most important,"verifiable zero access". I just don't know how they plan to make that provable or how to make their customers see that for themselves.
I got PIA a year ago and still have 3 years left so I'm still using it unless something more comes out. Granted, I use a VPN very infrequently, but for those using a VPN regularly, I think part 2 of their plan, whatever it means, is critical.