~snip~
A security leak is more dangerous than a privacy leak. I mean, leaking names, emails, and addresses is bad, but leaking seeds or private keys and having your device manipulated equals the loss of coins.
So far (as far as I know) no HW company has been part of a scandal that involved seed being compromised in a way that could be hacked remotely/online, but Ledger will go down in history as the first company to allow hackers that possibility. Although I generally agree that leaking seeds/private keys is a complete disaster financially, sometimes leaking data that includes the physical addresses of HW customers can have even more serious consequences, because apart from what you have stored on HW, you can endanger the life of yourself and your family.
This is true until fake and/or back-door firmware will not modify the data immunity inside Passport device otherwise they have the option to leave this wallet despite it is airgapped device.
I wonder how likely it is that something like that would happen and do you think that someone from that company or some hacker would do it? However, I think that the majority of people who buy such HW are not so naive as to fall for such a trick.
I would not put all trust on a single manufacturer. In my view the best setup for your stash is a multisig wallet with at least two airgapped co-signers, say Passport and ColdCard MK4 (or coming ColdCard Q1).
For those extra paranoid, maybe even that wouldn't be enough, but it's certainly better than the option of completely trusting only one manufacturer.