However the feature and culture of software distribution very much makes it safer. The overwhelming majority of malware gets distributed over ads from websites or search results. Package manager prominently used by all linux distros remove that attack vector or at the very least minimize it.

Ofc it does not prevent somebody from still executing random binaries from the internet if they really want to, nothing does.