Yep, if you let users install apps, they may install malware.

They may also install porn, gambling, lgbtq apps or whatever else you don't approve of.

Apple lets the CCP access Chinese iCloud data. They takedown dissodent apps in foreign countries. They block perfectly legal non-malware apps.

Yeah that's general purpose computing for you.

Though I do note that one of these apps was on the curated store anyway!