@dangoodin I'm not sure UEFI with its large attack surface is better, security-wise, than good old BIOS which was at least easily auditable.