My understanding is that it is fixable by just implementing a couple of APIs, but Artix barely has the resources to fix their own init system, so they aren’t able to support such compatibility.

No you haven’t. The security is the Jellyfin login prompt, then Jellyfin itself, then the Jellyfin container, and if you’re really paranoid, that container won’t be in your LAN.