For very weak values of "safely". If, for example, the app has an auto-update feature, like many apps have, then they can simply push malware onto you at some point down the road. Even if they don't have an official one, it wouldn't be too hard to hide one in the code.