Exactly my point. Open source practice evolved around sysadmins and software engineers who would never deploy a line of code without reading and understanding it. For precisely the reason that even official repos can never be trusted 100%.

Linus' Law (many eyeballs makes bugs shallow) was coined for the same reason.