When it comes to windows you can bet that users' desires will never be ignored. They will be carefully and consistently collected, logged, uploaded to Microsoft's servers, filed into their dossier on the user, copied to the state, and then used to push ads, or for anything else Microsoft thinks might be profitable or convenient for them.
Microsoft may not change their behavior, or their software, based on users' desires, but they sure aren't ignoring any data they manage to collect from them.
The official install instructions for Spotify are to copy-paste and execute some script which then downloads stuff and then use the downloaded file inside a comand executed as a super user. Same for VS Code:
The classical Windows flow of download a random executable installer from the internet, it is automatically scanned by an antivirus, execute it, get a notification about its signature, and only afterwards maybe get a request for admin rights, is superior to sudo-wget:
People WILL download and execute shit from the internet. It is better to provide warnings where risk is involved instead of normalizing the riskiest path. sudo-wget is like unprotected sex during a one night stand.
so in a manner of speaking, microsoft platformed it. wateringhole/supply chain attack, that promised to fill a void and also created a browser hijack experience, rich in scam ads and promotionals.
I think this is how I got the clipboard malware which converted address in metamask to fraudulent address. And the funny thing is windows defender didn't even detect this malware. However, Malwarebytes did found such malware.
The demand for workarounds and replacements of lost functions is attractive to threats like this.