Hmm, this is news to me and I’ve been saying everything is encrypted by default for a long time now. See also (emphasis mine):
Fundamental #19: The SAFE Network will only ever allow encrypted traffic and encrypted services.
Put simply, everything, including web traffic is encrypted by default. Everything. This is non-negotiable for a Network that demands privacy for every one of its users. You can of course choose to make information public — but this has to be your choice alone. So this means you can be safe in the knowledge your data will always be secure
I think it’s a fundamental [cough] problem if unencrypted information can end up on vaults unless I write code do extra stuff to ensure that doesn’t happen, and is not what people will expect.
Personally I don’t think unencrypted data should ever end up on a vault unless it is explicitly public/published.
My understanding is that non public, non published info can end up exposed on a vault unless the developer explicit adds their own encryption layer. That’s non trivial (except for the MD case) - not that hard, just outside most Dev experience, so a learning hurdle. So in many cases I expect it won’t happen, and if I’m representative, many devs won’t even realise it’s necessary (and will end up misleading users).