I agree that more projects should follow, or improve, the anti-klepto solution, but a laptop suffers the same exact problem, and it has a larger (software) attack surface.
I cannot see any other solution than open source software with a strong peer-review procedure, paired with signed and reproducible builds.
I feel safer with VMs and kernel level reviews
Please Login to reply.
A VM doesn't save you from a software patched for data exfiltration.
