Right... wish me luck, I'm going to try and pull ths in a slightly more constructive direction and talk about something Jolla could change without turning their business model upside-down:
I read somewhere before that a big chunk of Red Hat support contracts are with the US military. If Jolla wants to capture part of the government/military market, they desperately need to improve the security model on Sailfish. There has been some talk of "Sailfish Secure" but as far as I can tell nothing has materialised so far.
...installed apps could therefore install other things (that run as root) without authentication!
Also related, the roadmap says Jolla researched SELinux some time ago, so maybe there's a more elegant way of achieving this using SELinux?