Only until a single server running nginx is hacked and the binary leaked though...

Um, the nginx binary would have to be in the hands of hundreds of thousands of server operators. And the set of server operators is rich in the kind of person who would attack it. Not to mention the huge number of leaks you'd get.

Maybe if it's some server-side software that you only use yourself...