A secret analog of v128 could perhaps be used for faster SIMD implementations of cryptographic primitives. Therefore, it might be a good idea to add one. Like the existing secret types, only a subset of the existing v128 instructions should be added for the secret variant.

Yep! Will try to update the spec in the next couple of weeks and add this to it.

Are there constant time SIMD instructions in hardware? If not, constant time SIMD operations would have to be implemented in software and there would be no benefit to having a secret v128 type, IIUC.

It looks to me like Intel's list of instructions with data-independent timing includes some vector integer operations.

ARM's list contains SIMD instructions as well! :-)