Watching an MSNBC interview with Kaspersky and others. There's long been suspicion---Kaspersky Labs being a Russian company---that they can't be trusted. There's numerous classified investigations in the US directed at Kaspersky.

The reporter stated to a former FBI assistant director that Kaspersky offered the source code to the US for review. The response was that that's great, but is that what he is really providing?

This is a world that the free software community will soon be completely immune from with reproducible builds---and we're nearly there. There would be no doubt that some source code is actually what produced a given binary.

Of course, offering the source code for review is another concept we're immune from---we already have it. It doesn't matter that Kaspersky Labs is a Russian company (to me): they're still proprietary. I can't trust them, nor could I trust anyone else who asks me to run their nonfree software. What kind of security is that?