> The article seems to be insinuating that it would have.
I disagree, the article clearly states:
Montgomery and others were careful to say that Linux ID
will not magically prevent another xz‑style supply‑chain
attack, but they argue it materially raises the cost.