Most of Apple's security model is inherit to the human auditing and binary analysis that happens during app store submission; the inherit nature of computer software is to have unintended behavior due to unforeseen input and state. As Craig said, "Today, we have a level of malware on the Mac that we don’t find acceptable and that is much worse than iOS" https://www.cnbc.com/2021/05/19/apples-head-of-software-says...
Ah, well I stand corrected on that point. My other points also stand.
I've also speculated elsewhere that perhaps Apple could open source binary analysis tools, or at least present some sort of public-facing service to scan binaries. They could manage the semi-opening of their platform themselves, if they wanted to.