ryrona It's Trusty's secure monitor so it's open source in the sense that Trusty is open source. They haven't yet pushed tags used for specific releases on Pixels, seemingly just because no one is assigned to dealing with it. There are only minor changes to Trusty itself so the applets are the part that's largely not published as open source code yet. None of it is obfuscated so it's straightforward to look at what it does particularly when most of the sources are published already. We've had to do this in the past to figure out how to do things that were not well documented yet.
Similarly, littlekernel is open source but they've pushed their modifications to it for the bootloader yet. Qualcomm publishes their EDK2 source code for their bootloader but Google didn't publish their very minor modifications to it for Snapdragon Pixels.
Similarly, OpenTitan is open source and they've said they're going to publish the Titan M2 firmware/hardware sources that are based on OpenTitan but they haven't gotten around to it yet. They've significantly modified and extended that code though compared to Trusty OS which already suits the use case. OpenTitan is more server-oriented upstream and doesn't implement the required APIs.
The general pattern is that the firmware is increasingly based on open source projects. Trusty and OpenTitan are started as their own projects (OpenTitan is more like an LLVM style project now) while littlekernel was made externally but they hired the person who made it and it's now developed with their use cases in mind. They didn't assign someone to dealing with pushing the Pixel forks so despite deciding to open source them it hasn't happened yet. It will happen, but they're going to need to assign someone to do what they dedided to do. They announced the Titan M would be open source years ago and then published Open Titan, but they still need to start pushing what Pixels uses to fulfill that commitment.