Reality check. Its “far too easy” to break OEM updaters, and every one tested by Duo Labs contained a vulnerability