It’s hard to add malicious code when there are so many eyeballs developing and monitoring code. That doesn’t mean it is impossible – XZ Utils in Linux had a backdoor with a CVSS score of 10.0, the highest possible, meaning remote code execution is possible (which is bad).
Latest Answers