So, my unqualified questions are: has the source code been ever reviewed by independant groups, and has anyone ever compiled any version and compared it to the packages offered on the TC site?
I think people have compiled it for windows, but like very few. It isn't impossible but extremely unlikely you could without having there compiler. I have yet to see a comparison from independent groups. Plus it is released under there own license it is just a very shady operation.
https://fedoraproject.org/wiki/Forbidden_items?rd=ForbiddenItems#TrueCrypt