Thinking you can build a 100% safe application is a myth. Even with the best developers working for you, your application is still likely to have vulnerabilities. When companies rely on a crowdsourced community, they have more skilled people looking into their system than they could ever hire. It can also save them money, since they only pay the ones who find flaws. Breaches are expensive to recover from, way more expensive than money invested in bounties.