I'll clarify some of my feelings about this general sort of thing.
I am actually quite concerned about distributing software on the internet. Moreso than some, I feel.
I understand the facts speak for themselves; that I am just some guy on the internet and, despite the promising comments and figures regarding usage of my things, for a user there's just no way of knowing what goes into them and whether they're safe to use or not. Some people have even had antiviruses provide (what I assume are) false positives on my software and told me this.
For this reason, despite the fact that a part of me would have liked to keep my software closed source, I have thus-far studiously posted source code for every piece of software I've released on DeviantArt. I'm not overly concerned about IP re-use, but the niggling feeling of vulnerability always remains.
I also acknowledge the fact that openly available source code alone doesn't mean that prebuilt executables are any safer, nor would MD5 hashes, etc, when the issue at hand is determining whether the software itself is compromised but it's a start, and the people who are suitably equipped and suitably informed may compile these things for themselves if they are determined to do so, and I would help them through it if they asked me to.