I’m asking out of complete ignorance here, and I’d like to learn. Why don’t these have nearly perfect safety mechanisms? To my naive mind, it seems easy to add a push button that comes between the striker and bullet, or locks the striker in place. Obviously it’s not that trivial or they’d probably have done it. Why is that?
I’ve owned rifles that had safeties that made it impossible to pull the trigger. Don’t these?
If you're asking why there's no manual safety, it's because the modern doctrine for handguns says that it is unnecessary, on the basis that the handgun should either be secure in the holster or - if drawn - ready to fire. A properly secure holster prevents trigger from being pulled even accidentally, so if the gun is impossible to fire at all without pulling the trigger (as e.g. the Glock design achieves for striker-fired guns), the holster is deemed sufficient, and manual safety is considered a misfeature that doesn't add safety but makes deploying the gun more error-prone.
FWIW this isn't even a new take. Many popular DA/SA guns cannot be put on safe at all when they're not cocked, even though they can be fired through double action - logic here being the same, between heavy trigger pull and hammer block it just cannot fire without a trigger pull.
That said I personally don't agree with this analysis. Or, more accurately, I believe that the increased risk from not being able to use the gun when it's needed is not properly balanced against the increased risk from making the gun easier to fire, especially in applications where handgun is not the primary weapon (which is almost always the case for the military).
I glossed over parts of this mechanism above, but partially pre-cocked strikers require the trigger bar to pull the striker back more before the trigger bar drops down, releasing the striker. The amount the striker is pre-cocked is not enough to ignite a primer, and the act of pulling the striker back against spring pressure mimics the sear geometry of a hammer fired gun.
Fully cocked strikers are ready to ignite a primer if the striker drops. I don't know of another design like Sig's that has a fully cocked striker, which is not to say there isn't one, or that they're all unsafe.
The P320 in particular suffers from compromises shoehorning a fire control unit designed for one gun into another.
Combined with poor manufacturing techniques, tolerance stacking, part mixing, and poor QA, the striker block, which is the last safety intended to block the striker without an explicit trigger pull, can become ineffective.
To answer your question, there's no mechanical reason a handgun cannot be designed an manufactured to not fire without explicit mechanical input from the user. Indeed almost every commercially produced handgun on the market fits this requirement. A combination of failures on Sig's part has allowed this to happen.
As mentioned it is possible to make double or even triple safe (or more).
But some of the types of safeties increase the change you won’t have it on (because time to disengage the safety is too long/complicated) or that they will introduce additional failure modes.
For some missions, “unsafe” is better than “too safe” - think one step from gun drawn, finger on the trigger.
This is one of the reasons Glocks are so popular, as the trigger safety is really “easy” to disengage as it’s the same as the mechanism you use to fire.
But it doesn’t protect YOU from being a dumbass. Safeties that do that are dangerous in another way.
I’ve owned rifles that had safeties that made it impossible to pull the trigger. Don’t these?