If someone else than cookbook uploads a contract, how can I be sure it's safe for me to deploy on my project? Is there a failsafe of some sort? (code review/approval, community ranking etc)
Many of the contracts have their audits listed, you can read through the audits to see whether its safe to use or not. But as always, you should make sure to do your own testing before deploying to production.