That’s a good point. Yet, I repeat my mantra on this: verify the published result of a development process instead of worrying whether the authors were malicious. Old A1 (now EAL7) development processes assumed developers might be malicious. They had to produce a system and documentation in...