Your right in the aspect that OSS does not mean secure... don't agree with the down-votes here.

OSS can often mean less secure. Unless you have the capabilities to fully audit the software you shouldn't fully trust OSS... unless it has an external audit.