Yes, I know. But IMHO all of this is just an algorithm/code, maybe an organized minority could change the algorithm. And use Raspiblitz and Umbrel to attack the consent mechanism.
Either way, you put trust in the developers of Bitcoin core, Raspiblitz and umbrel to not ship a malicious update. Or that enough node operators have disabled updates.
The malicious update can be very subtle, like we saw with the xz-util.
Or be displayed as a matter of parameter fine tuning like we saw with the Bitcoin Cash fork.
At the end of the day we trust a minority of humans to not go rogue.