[klabb3]

> Beg bounty hunters have damaged the field so much.

Sure, the grifters themselves are guilty too. But hear me out: maybe the corporate geniuses who decided to crowdsource security using non-contractual if-we-feel-like-it bounty payments could have contributed to the grifting culture.

> Hell, I have even been ghosted after reporting the bug which they promptly fixed and did not even write back to say a "thank you".

Just curious, why perform labor without a contract? If it’s just for personal interest, I wouldn’t even bother to report unless the company has something to offer first.