EDIT:
Of course you have to trust Gnosis that the coding is correct. But you need to trust any other developers as well when you use any program on this world. Like I said before, If you don't trust anybody you will live in a box.
EDIT2: Other people don't need that trust, they read the opensource code
Thanks to agree with me. Finally you understand that you need to trust Gnosis.
As I said before, in the opensource code, it will be not possible to see if Gnosis hold the factors (P and Q) of the RSA keys or not. You will see only the N number in the opensource code.I didn't agree with you and that.
I said you need to trust Gnosis that the source code is legit when you can't read it.
It's a different thing.
Yes, we need to know if Gnosis holds the factors (or if he is able to) - you are right by saying that this would be a major major threat.
But you need to understand that by generating by hashing the only way to know the complete factorization is to factorize it.
EDIT: If you don't understand it, and you feel there is too few sources to explain it to you, PM Gnosis. This is getting ridiculous really, you make too much of a fuzz because you have a lack of understanding it, it even seems like you don't want to. So like I said, PM Gnosis or read into the source, that's important for you.