RE: Small codebase as a prerequisite for security