Does that mean blind trust in apt repositories?

I think apt checks signatures. You only need to be careful when adding a new repo to verify the pubkey there.