Good article on the security implications of shipping big, complicated software with tons of dependencies.
Why Bloat Is Still Software’s Biggest Vulnerability – Bert Hubert
The world ships too much code, most of it by third parties, sometimes unintended, most of it uninspected. Because of this, there is a huge attack surface full of mediocre code.