We might be able to change the default configuration files but maintaining a different set of configuration files is unfortunately unrealistic due to lack of KVM contributor activity.
Since nobody else on the internet claims to do that, and this being highly complex question with security impact…
TODO: Contact Qemu-discuss Info Page and ask if this is secure or vulnerable to any CPU hardware security bugs.
Unfortunately, this tool is not reliable (at least not inside VMs) due to false-positives, false-negatives and the complexity of CPU hardware security bugs. Hence, the only way to find that out is to contact upstream, the QEMU developers.