It's easy to inspect your one, that didn't get the custom firmware loaded or bugdoor activated. To be fair the applies to mobiles as well (and probably more so since they are better targets).
OK, but this is moving the goalposts. If the CIA has put custom backdoor framework on your device then all bets are off, whether it's an Echo or a smartphone. This isn't really the situation that was being talked about on the thread.