I "trust" the base install of parabola, but I don't trust the package repository.
I ran packet captures for a week in text mode on the base install and saw nothing crazy. My servers have stood up to some intense attacks, DDOS, brute force, bot net junk mail phishing, etc. However I have had some strange probable surviellance experiences using xorg on parabola.
I don't have the time right now to get everything working on Gentoo the way it works on my parabola installs, but one day I will completely switch.
I also like OpenBSD, the base install has only 45-50 running processes as reported by ps. It looks clean but I haven't done any analysis. OpenBSD package repositories are ~ 6 months old packages. I can't speak to their trustworthiness.
Parabola with full disk encryption with tor and firejail on everything is probably the best that a non computer science person can do. Gentoo has me reading compile error logs, and running around in circles spending hours finding out which flags messed up the emerge installation, and which missing packages caused errors, it takes too much of my time, pacman on arch is simple but comes with the aforementioned "trust" problems with the packages. I basically don't trust computers anymore.