That’s an interesting comp, 2 things come to mind when trying to think of differences:

- no active widespread attack happened that I’m aware of for this (tbd)

- Cocoapods is open source software

much, much more serious. If I understand correctly potentially any app that you used could have had spyware for the last 10 years.