Those comments are describing security from the standpoint of the user, not the service provider.

I'm assuming far less risk visiting a unknown website than I am downloading and running an unknown binary.