Somehow, they conveniently forgot to mention these "security" features:

1. Constant popups about "application requesting access" on macOS. That often happens without any user's activity.

2. If you leave the permission popup open for some time (because it's on a different screen), it auto-denies. And then you won't be able to find ANY mention of it in the UI.

3. macOS developers can't be assed to fix mis-features, like inability to bind low ports to localhost without having root access (you can open any listening port on 0.0.0.0 but you can't open 127.0.0.1:80).