Tor as a software project has been around for 10 years. It's developed in the open and a large hacker and academic research community studies it. There are known potential attacks against Tor, but nothing that has been successful on the deployed network, despite the fact that it's a big target (the biggest anonymous network). As such, Tor seems pretty secure. We don't know that about SR. It's developed in secret by who knows who. We can't know if it is secure until something like this happens, and then we only know that it is insecure. This is an attack on the application layer, not Tor.