None. It's purely a matter of trust.
Even a client placed in the market may not be the one posted in the source code at all. Even if you compile the client from the sources, an update will arrive, without which the messenger will refuse to start - that's all.
If the traffic passes through someone's servers, it is best to consider that it is viewed by everyone who is not lazy.

Use another communication channel, exchange public keys and then work out a shared secret with some Diffie-Hellman. Something like this.

If the messenger is for android, then there is a special. software for checking open, pending and application-established connections for protection from the mitm-vector of the key exchange and connection process itself (!!! But mitm is such a thing a vector one step left / right and the attack is already rolling, so the protection of software cascades taken separately is useless (IMHO) ..
PS: applications can be found in the google play market at the request "mitm"; "mit test".

No, it's a matter of trust in the company. Raise your server, the so-called self-hosted, such as MyChat, Jabber or something like that - then you will have some kind of guarantee, and then only because you can control the traffic between the server and the client.

RetroShare easily breaks through NAT
Tox messenger easily breaks through double NAT
XMPP with OTR
JAMI is still damp but you can use
all of the above is open source I personally tested all these programs