anonymous environment attracts developers of malicious software. You are going to somehow fight it. And in this respect, everything will work automatically and there can be no claims to the developers.
I think that it will be possible to create an additional project to control the distribution of malicious software. Experts will search for and destroy such software.
Of course with this in general there should not be any problems. There is a large number of services and software to detect malicious software. I think this will be eliminated at the very beginning.
well, if it were so, it would give additional advantages to the project. But the anonymity of the development should not be violated, users should be aware that their product is protected