You can lock down the source and also use AI to look for bugs in it. It does take significantly more time and money for AI to find bugs in compiled code.

That said, I agree with another commenter that this seems like more of a business decision than a security one.