Too true, you still have to pick your poison
Fedora/RHEL rips out key features for legal reasons despite them not being an issue for others
ClearLinux and openSUSE are in a similar boat to Fedora, making them unsuitable for use
Debian wont issue DSAs for local exploits of end user apps and until recently had unpatched browsers
ArchLinux patches everything to upstream but a lot of software is AUR-only, which is a security risk
Ubuntu is fine but only if you use main/restricted packages and avoid snaps/universe/multiverse
Snap and Flatpak are not the way to go because they causes more issues than they solve, in that you now increase your RAM use, decrease integration and still get backwards compatibility issues... not to mention introducing the "third party vs. first party" update problem.
What needs to happen is a culling of distros and a merging of efforts, but that looks unlikely.