do not use keyserver-options in Whonix
If Whonix is detected, could you prevent adding --keyserver-options http-proxy=http://127.0.0.1:8118 please?
Since enigmail just calls gpg. And since everything is torified in Whonix anyway, and since gpg is stream isolated (by uwt wrapper) anyhow, there is no need for this setting in Whonix.
As a result, using enigmail's keyserver features would work out of the box in Whonix.
To upload designs, you'll need to enable LFS and have admin enable hashed storage. More information