The 2.5 million packages on npm are both Node's biggest strength and its biggest security vulnerability. Managing dependency trees and supply chain attacks in the JavaScript ecosystem is a full-time job. Rust's Cargo package manager and strict compile-time checks give me a lot more confidence in production security. This aspect alone makes a strong case for Rust in high-security environments.