[alt227]

If they make excuses, sit on it, or dont pay out, release those bugs into the public domain, thats how this system works!

[billy99k]

While I would love to do that, I still enjoy making a living in security.

[alt227]

Im genuinely interested here. If you made some security bugs public due to the company not cooperating properly, would that damage your reputation in the community to the point it would jeopardise your career opportunities?

From the outside looking in, it seems that the community would applaud that behavoir, but I am not familier.