There isn't any maleware in our software, had there been it wouldn't be permitted to be hosted here on WordPress.org.
Perhaps you're confusing the word Maleware which means "software which is specifically designed to disrupt or damage a computer system." Because this clearly isn't the case here.
I see you mention the Dashboard, we don't even mention or use our Dashboard in the free plugins hosted on WordPress.org, this is because you don't need it to stay updated and secure. WordPress will notify you do that when we publish updates.
The Dashboard install message (which I believe you're referring to) only occurs from our premium plugins, it's designed to keep you updated so you have the most current and secure code. It also helps prevent conflict avoidance where you could accidentally upgrade to a WordPress plugin of the same name:
If you are indeed refering to our Dashboard then WordPress.org is the wrong place to do that as this would relate to our premium not free services. Of course if you contact us then we'd be more than happy to discuss this further with you:
Really not sure what we could take away from this review to improve the free Smush.it plugin here. If you could elaborate further please or contact us direct.