Supply chain transparency is becoming the security boundary. We've started auditing dependencies in our agents for this reason — fewer opaque closed-source components means faster response to CVEs and better user control over what runs. Mobile is the right lever point because it's where users actually trust the most but control the least.