The contracts are kept small and modular to minimize the complex architecture and complex bugs.
The more people examine a piece of code, the more issues are found. So a friend has reviewed the code for issues.
Re-Entrancy is eliminated buy deducting the ether from the senders account before sending to the receiver.