Plugins don't particularly worry me. We're a small club of authors, and no one gets a free pass on inspection, and we also all have to deal with certain employees of Limetech doing another random inspection looking for other types of vulnerabilities.
I'm more concerned about users installing a random container from a dockerHub search (not anything within CA itself) that might contain something unexpected (eg: mining software). The sweet thing about docker apps in particular is that they all only have access to files and folders that you've explicitly given them permission to have, so any malicious intent (eg: ransomware) is limited. Once again, this is about stuff that's on a dockerHub search, not CA itself.
Both CA and FCP know what's going on with the apps installed, and if (big if) something ever malicious snuck through immediate steps are done to both alert the user and myself to what's happening.