What happened with XZ got me thinking again about the tendency in Bitcoin to "just update Core to the new release".

Yes, Bitcoin is a wildly big open source project with a ton of clever people looking at the code...but shit happens.

Just don't update Bitcoin Core in a compulsive way whenever a new version comes out, keep challenging the backward compatibility of the software. Use old versions, be conservative with the Bitcoin implementation that you use.