“trust” is delegated from the AppStore bureaucrats who let scam bitcoin wallets in anyway, to your WOT.
Would you expect all of your WOT to get hacked at the same time nostr:npub1m6azw8j5wanm6mvwa367anjkzhdnz7srkpl5tyf5kql8ydsq2e2sa7h78d ?
Discussion
I'm assuming that not all people in your web of trust need to verify the app. So there will be some threshold. E.g. "at least 3 people in your WOT with score over 5 verified app ABC". And then yeah, 2 people could be hacked, especially over longer term. There are definitely ways to mitigate these issues...