Security risk when using Anaconda or Miniconda


I was quite insecure when reading this text:

I installed anaconda on the computer I use at the company I work for, my fear is that I am putting my company at risk.

My question is: can the packages that are installed or updated by conda and conda-forge be compromised or do the packages available from these sources go through some validation process before being made available?