Perhaps because #Javascript is usually deployed by web designers, not software engineers or sysadmins. Designers who are given with minimal to no maintenance budget, if they're even retained by the client after they deliver a website design. In practice, JS is a hot mess of known bugs and security holes, running on your browser without you knowledge or consent (unless you use #NoScript etc).