Assuming we want something that works now and prefer something that works on POSIX systems over something that is not portable at all, would using GNU Guix (as a package manager) be able to improve the situation? As far as I understand, it is hermetic, deterministically repeatable, and redistributable. Just limited to POSIX.
https://guix.gnu.org/packages/P/page/12/