So, I would like to expand on your thought process and say that you shouldn't buy any new hardware wallet by Ledger, Trezor, Passport, (insert company name), for at least a few months to a year to give those who know what they are doing enough time to test it and try to break it. Those who can do it themselves, even better.
Honestly, it's not bad advice in general.
That's where I come in and mention open source code & code 'reuse' though: By Foundation forking off tried & tested ColdCard code, essentially large part of the Passport's codebase is already at least reasonably trustable to be secure.
This is a general concept: if there was more collaboration of HW wallet manufacturers and developers, it would be possible to create a 'master firmware' for hardware wallets that everyone, also new companies, could use & hit the ground running. Beneficial for (new) businesses and users.