My understanding is that what you're talking about, is how these services are claiming to work. Trust is still happening, but it's moved from trusting a data service to not provide keys to adversaries, to trusting a code repository (i.e. the user trusts Apple/Google/Microsoft to have not included (or include in an automatic update) a backdoor in the user's OS, which causes your computer to give up keys upon request).
That's a step in the right direction.
And I think people can see the obvious next step from there, which is that it's undesirable to be getting any locally-run code from any of the service providers that you use. (e.g. if you use Apple's storage services then you shouldn't be running Apple code to access it. And same for Google, Microsoft, etc.)