So if you found a security bug in some networks software you'd just make it public? zero validation? just Tweet it out publicly as soon as you found it?
What due diligence did you do on globalforestwatch.org?
I emailed them about each and every flaw of their API that I detailed, and some other details I didn't reveal about it.
Their developers and public relationships people are good professionals but I can't stop feeling they are overworked.
Moreover, I detailed those flaws not as empty criticism but rather as instances of software being problematic not because of undocumented behavior but actually because of "undocumented design".
Their developers and public relationships people are good professionals but I can't stop feeling they are overworked.
Moreover, I detailed those flaws not as empty criticism but rather as instances of software being problematic not because of undocumented behavior but actually because of "undocumented design".