pull down to refresh

You mean Core developers, because they already have shell developers...
Core development is risky, and barring discovery of new vulnerabilities, unnecessary... changes should be few and far between.
So, the best way to protect their investment is to work in stealth on things like security, which you'll hopefully never hear about.