TLS is used for this inside corporate environments because it can be intercepted by snakeoil CA using firewalls.
So I'd argue it's not as secure as SSH, where an MITM actor implies a compromise of the cryptographic algorithms used underneath or an exploit like the xz case.
So I'd argue it's not as secure as SSH, where an MITM actor implies a compromise of the cryptographic algorithms used underneath or an exploit like the xz case.