Unfortunately, we have to trust somebody at some point making an app open-source is not equal to secure by default. 
We need to wait until many people of reputation actually audit the code.
nostr:nevent1qqsv7mcfz373y46ca8tdtxccaet0aehsyzxftg308mjq2a9jf9smjqqpr4mhxue69uhkummnw3ezucnfw33k76twv4ezuum0vd5kzmp0qgsxg45ph8gx0vdrvtzta6xal7v86frx6jvstsnvhrlvtehmwwh4epqrqsqqqqqpg9ugy6