there needs to be some API to tell amber what permission set the app needs, with reason texts for each of them, so you can approve them in one go. this should be a client side thing, also, but if amber had a batching API call to set permissions in one hit that would help a lot too. and app devs should think carefully before they add new ones. actions it does are both signing events and as well for some, encrypting. there is small things that would improve on amber side, but really, most of it is client devs responsibility.