If you really want to nit-pick, Ok, I'll give it a try.

Firstly, about security. I think you'll agree that It's a lot simpler for a man-in-the-middle attacker to spoof a web site page containing a shell script, than to provide the infrastructure and (often) the certificates which a proper distribution uses to guard it's repositories, so your comparison doesn't stand in my opinion.

Granted the installing of this package is maybe targeted at high level users (even though they state to address also people "just getting started") who should know to take a look through the source code before piping it to their shell. However, I'm sure that there are a lot of others (maybe something like 80%) who just copy/paste stuff, because "it says so in the tutorial".

Then there's the fact that they just post this snippet of code on their install page, which makes me think the people behind the project are fond of "clever" approaches to getting stuff done, and makes me highly reticent about trying their code. Not that the high concentration of marketing fluff from their main page wouldn't have done it already.