This PR shifts responsibility to disable _FORTIFY_SOURCE
from the user to the build system, which:
- improves usability
- simplifies the CI and OSS-Fuzz scripts
- is useful for CMake migration as it removes the need to use non-standard
APPEND_CPPFLAGS
in such a corner case