Reviewing the source code of an entire operating system is not a task doable by a single person, particularly when that person is not an expert in the field.
A proper code audit needs to be done by a team of professionals capable of spotting things like actual security vulnerabilities and logic errors that might result in more data being exposed, than advertised.