Good skills Guang, bad skills err pretty much everyone shipping software
"The impressive thing about Guang's exploit is that it was one shot" - bugger! Goog have some of the best in the business, and lots of them, building their browser(s) and Android. They have to - it's a fundamental underpinning of their business: waving text n pics paid for by advertisers at a semi captive audience.
However, one bloke on his own can pwn their stuff like this, which is bad for business. How bad? Not bad enough to spend real money on. Some, but not enough to make a real difference.
For Goog to develop really safely will require an entire team of skilled security conscious programmer-auditors to shadow each and every one of their already pretty skilled developers who will audit code as it is checked in. That applies beyond Goog to include ... oooh look: squirrel.