Quick, name a non-niche dns server that is easy to configure and maintain that hasn't had a major vulnerability in the last six months.
dnsmasq's last CVE was in October 2017 https://cve.mitre.org/cgi-bin/cvekey.cgi?keyword=dnsmasq
despite that "safety record", I am probably going to switch to https://github.com/bluejekyll/trust-dns