How do you guarantee the tool itself isn't more dangerous than the threats it's eventually protecting against?

It is at least open source unlike others: https://github.com/safing/portmaster