(I’ll bite and try to steelman) How does a typical user verify that they are running the intended secure software?