@nprofile1q... Core boot source is out there, no? openWRT is open source. So that criteria seems satisfied.
When we cannot see the code we can't say if security issue are or are not present except by the evidence from outside the code. I didn't act like anything. I asked questions in case I missed something I can actually do anything much about.