Lol – have you ever compared security advisories between windows and Linux? Just so that your “argument” goes beyond “it is known”?
Different projects are governed differently and have different purposes, some aim to help coders other just want to develop some software. Some don’t even have paid counterparts.
You seem to try really hard to build a cheap generalisation when in reality open source doesn’t quite have a common denominator.