Reproducible builds is a very important part of knowing you are secure, and in the absence of that at least being able to flash on your own compilation.
Well even with reproducible builds how do you check what actually is running there? That'd be the ME reporting "I'm running version X" without a way to really verify it. Also if you flashed it you cannot be 100% sure there is no other component that is still running a rootkit.