Information on incoming.debian.org
this page says packages in incoming are verified by a script called
Katie. And has
been approved by a FTP master. It seems to me that there is not much of
checking on packages in incoming before they go to the pool.
states that the packages are totally unverified and should not be used.
What is the exact behavior of the system?