@poVoq
What I meant by that is that if you trust Teleports code, then you can trust that the version delivered by the open store is consistant with the repository.
Because you can check the sources from a git and the install a package that you don't know how they got built.
That's a chain of trust, I trust Florian hence its reviews hence Teleports, I trust UBports hence the open store, so I trust the click package delivered by the open store for Teleports.
You are right to point out that the open store doesn't make all apps safe. But if you know and trust the source and if you trust the platform, then you can relax.