That's why you should always verify the signatures of your software! The feds have not compromised the private key(s) used to sign software releases.
Samourai used their PGP signed warrant canary to announce that they started complying with information requests from the feds nearly a year ago:
https://twitter.com/SamouraiWallet/status/1664738065632436224