What if your base os is compromised and you use a livecd whilst being offline to store the coins.....can this make you unsafe?
"Even if the manufacturer (https://bitcoin.org/) claims that it runs open-source code, how do you tell whether it is actually running what you compiled?" Verbücheln said.
in other words: MANY developers worldwide are working in their free time to a project, in this case, Bitcoin. That's why it's called OPEN SOURCE.
These developers can put anything they want IN the source code.
Verbücheln: ".... that some pieces of open-source code are so large and complex that even a dedicated community of developers may not detect a malicious addition."This is pretty much impossible. I believe only selected, trusted and knowledgeable members are able to commit, they probably are reviewed by a lot of people before changes can be committed. It is not possible for anyone to just insert changes without the approval of core developers and those changes are usually fairly small.