Well, you conveniently ignored half of my point. Even without ssh depending on systemd (dependency introduced by distro maintainers, not systemd, mind you), a backdoor in xz can still exploit your system in a myriad of ways.
And secondly, I would say even if nobody is going to blame me, I would still secure my systems. Why? To protect my data of course.
And secondly, I would say even if nobody is going to blame me, I would still secure my systems. Why? To protect my data of course.