It's likely attestation done the same way Signal protects your contact data by using secure enclaves. Doesn't seem like an issue to me if we can cryptographically verify the source code running on their servers. Maybe wait for that?