This company does not really care about it's customers. I purchased in the beginning of May. 6 weeks later and 0 updates, the rev the product to 4 and they expect me to pay for an upgrade. Yeah no thanks, not a way to treat new customers.
This app is a decent reason to add signature checking to distros. Though until we're off of X11 the application doing the connecting can just press the button on OpenSnitch itself!
Unless you're on Wayland, OpenSnitch is totally vulnerable. One workaround would be to have OpenSnitch stop the requesting process before displaying the prompt, but if there's a configuration panel any application can just add the exception ahead of time anyway.
Not much in the realm of Linux, to be honest. You'd probably get more security maintaining a SELinux setup on your system and running a hardened kernel.