No doubt it is. However, from a developers perspective, you can never be certain your piece of software is 110% secure. I guess I just have a different perspective on it ever since I managed an open-source project, and you know how those are.
Well, if it isn’t secure, don’t you think it’s best to be discussing it here, in plain sight of the developers and the community, instead of some closed IRC channel or email thread? Marketplaces like these, while not open source, are centered around community. Without openness there is no community.
Something like this is of equal concern to Envato, the buyers, and the authors. So, this is probably the ideal place to be discussing such things.