e.g. Risk of Apple deploying a malicious binary: low [0]
Risk of J Random Dev deploying a malicious binary: higher, after they plug in a Thunderbolt adapter they found laying around at 32C3 [1].
So you might be willing to accept the risk of using a closed source OS, but an app doing interesting low level (?) things to the OS? Maybe not.
[0]: Yeah yeah, the NSA is going to force them to deploy a bad copy of XCode, I know.
[1]: https://trmm.net/Thunderstrike_2
e.g. Risk of Apple deploying a malicious binary: low [0]
Risk of J Random Dev deploying a malicious binary: higher, after they plug in a Thunderbolt adapter they found laying around at 32C3 [1].
So you might be willing to accept the risk of using a closed source OS, but an app doing interesting low level (?) things to the OS? Maybe not.
[0]: Yeah yeah, the NSA is going to force them to deploy a bad copy of XCode, I know.
[1]: https://trmm.net/Thunderstrike_2