It is (or was) definitely possible to be security conscious and use an Open Source OS:
* You can use reposync to update a copy of EPEL, PowerTools, etc.
* You can use yum -q deplist PACKAGENAME to list dependencies
* You can copy the necessary RPMs to a DMZ and apply security scans/tests, then take them to your boxes and install them
Also, any corporation or organization like I'm talking about has internal approval/certification of software as usable on their networks. The Army formalized this as the CoN, Certificate of Networthiness.
* You can use reposync to update a copy of EPEL, PowerTools, etc.
* You can use yum -q deplist PACKAGENAME to list dependencies
* You can copy the necessary RPMs to a DMZ and apply security scans/tests, then take them to your boxes and install them
Also, any corporation or organization like I'm talking about has internal approval/certification of software as usable on their networks. The Army formalized this as the CoN, Certificate of Networthiness.