Offering to show the source is actually a sign of a scam. The source need not be identical to the actual build, and antivirus software updates daily, which means that it could be a clean platform with the abilitz to go cyberwarfare on demand.
This makes sense as Putin is already waging war on us, and Kaspersky could be one of their intended "cyber carriers". Kaspersky is too close to Putin, too compromised to be acceptable. You need a vendor that is visibly above reproach, someone who would have no interest in working with the Putin war machine. Kaspersky is not such a company.
I believe they should be purged from all government agencies in the West, as well a important civilian infrastructure. They are just too risky.