Isn’t it against the EU’s DSA?

This is not about pushing limits, this is about consent and manipulation.

Can you explain how to make it work for this use case?

There is no need to pay for an external service for this and I don’t think Mullvad would work for this use case.

https://github.com/arkenfox/user.js/wiki/4.1-Extensions

I only torrent video, audio and epub files. For those as long as your player is up to date you should be fine, nobody is going to burn a 0day on you.

Now if you torrent executable files it is a different matter. Mac and Linux malwares exist, they are just a lot less common. You should try to find a trusted source, public trackers are not one. And you could restrict and monitor the program to see if it tries to do suspicious things. By running it in a sandbox like firejail or preventing it to access the internet with your firewall, you could use a tool like opensnitch to see where it tries to connect.

Linux and Windows compress it too, for 10 years or more. And that’s not how you avoid zip bombs, just limit how much you uncompress and abort if it’s over that limit.