Basically, you can't trust individual components.
In the times we live in, there is plenty of malicious or fraudulent hardware out there and blindly trusting third party components (any vendor) leaves the platform open to various attacks.
Apple are a bit more paranoid than other vendors about this (and maybe in this respect a little ahead of the curve, which imho is a good thing) - but make no mistake, malicious/trojan/fraud hardware components are definitely out there. Can you imagine what would happen if somebody's bank account got raided because a customer had installed a knock-off touchID sensor that allowed virtually any fingerprint to unlock or authenticate transactions on the device.
e.g., during onboarding of a fingerprint it just stored the data in-sensor for replay by anyone to unlock the device later?
I mean, it's a matter of trade offs with anything of this sort. I understand people wanting to be a little careful with it (and that's important, I will agree) but some of the decisions that Apple has made regarding to this have had concerns raised about them by some very credible people in the industry for several years.
1) Many components, such as hall effect sensors (sleep sensors which detect when the macbook is closed) or screens/displays aren't exactly going to be a security risk. There is no reason to disable sleep or true tone functionality if these things are replaced.
2) If a customer DOES want to get things such as a fingerprint scanner replaced, I'm of the opinion that they should be displayed a warning if it is a third party sensor and be able to override it with their iCloud password. However, this sort of thing is an easily preventable problem simply by making official parts more easily accessible. Many of the reasons that independent repair shops are unable to use the official Apple tools for this is because they've been raising concerns about unrealistic requirements (such as not even being able to keep some of the most common repair parts in stock, which forces them to wait several days after diagnosing a device and placing a repair order in order to order the part that is required, significantly delaying the repair for a crucial device for the customer.) These sorts of things make it very difficult for authorized repair shops to stay in business, which is why many people in the repair industry have been raising concerns for years.
3) Even the power chip, which is a common failure part on some of the more recent MacBooks, has been specifically adjusted such that common power chips in the industry won't be compatible. Apple actually created a new part number recently and specifically adjusted the pin layouts (or the addressing to the system, unsure of which) to be incompatible with the old chips WITHOUT changing anything else about it, then forced the manufacturer of this chip to not sell to anyone else aside from Apple (essentially blocking out anyone who would want to do a board level repair of this chip, since Apple themselves won't perform this repair and will simply charge the customer for a new logic board instead). There was no reason for this, aside for blocking independent repairs.
There are, of course, plenty of situations where it DOES make sense to lock things down. The T2 chip is a perfect example of this, and is something that frankly nobody outside of Apple has any business repairing or touching. My opinion is that these things should be taken on a case by case basis. There are some things where it makes sense for Apple to lock things down and say "nobody outside of Apple is ever touching this". For other things, I don't think independent repair shops are really the enemy.
I suppose there's nothing stopping me from taking my car to a shady auto shop with a 1.3 star rating that is known for purposefully installing tires that blow up exactly 50 miles down the road, but if I were to knowingly go to such a place (and the reviews would reflect it if someone were doing this), I suppose I would be assuming the risk and would take that responsibility upon myself.
Speaking of the auto industry, I actually worked in this industry for several years, including for vehicle service departments, until I left and became a software developer. I've seen some weird, weird things. A very large manufacturer, which I won't name for privacy reasons (don't want to spill too much personal info about where I've worked, but they were a large American manufacturer), was notorious for making it so that headlights couldn't be replaced easily by any third party and had to be replaced as an entire assembly, which required purchasing significantly more in terms of parts and forced them to perform much more labor for what was essentially a wear part. The same arguments have been used for these (they last longer, etc), but yet many people still came in to get them serviced for very high prices. It's a trend that didn't make a lot of sense and only ended up costing the customer in the end, when there was no reason that it couldn't have been designed in a much more serviceable way (as it used to be, when you would simply screw in a headlight in your driveway. There's no reason we couldn't design LED-based systems that work the same way.)
Of course there are trade offs all around. Not EVERYTHING should be accessible for just anyone to touch. But I've long been of the opinion that we should discuss some of the ways this sort of thing is locked down now. Some of the parts that were locked down quite simply didn't need to be locked down, and that's largely been my position on a lot of this.
