|
|
|
|
|
|
by surajrmal
213 days ago
|
|
|
The timeline is industry standard at this point. The point is make sure folks take security more seriously. If you start deviating from the script, others will expect the same exceptions and it would lose that ability. Sometimes it's good to let something fail loudly to show this is a problem. If ffmpeg doesn't have enough maintainers, then they should fail and let downstream customers know so they have more pressure to contribute resources. Playing superman and trying to prevent them from seeing the problem will just lead to burn out. |
|
|
It's not some lone report of an important bug, it's AI spam that put forth security issues at a speed greater than they have resources to fix it.