Security of non-official packages

I had a security question raised that I could not answer. How can we be sure that UiPath Go or non-official packages do not contain malicious code?

We cannot decompile them and any developer can use any package within the package browser within Studio.


Welcome to the uipath community.

After uploading components into Uipath Go and then uipath people will test it and once it passed all tests then only they will publish into it. So it doesn’t contain any malicious data.