Create a certificate system requires a lot of responsibility. If certificates of more than 90 days are unsafe, should not exist in any other case, if wildcard certificates are unsafe should not exist at all.
There is not a security problem, is a problem of responsibility. They want to do something that requires a lot of responsibility not assume at all.
Security is not a reason, it’s an excuse.