Hacker News new | ask | show | jobs
by john_strinlai 49 days ago
you must be unfamiliar what used to happen before hard deadlines were set on disclosure. it was much worse for the users.

here is a good start: https://projectzero.google/vulnerability-disclosure-faq.html...

there is ~3 decades of more context if you search for it.
1 comments
stingraycharles 48 days ago
tldr: if security issues don’t get disclosed (or the real threat of disclosure) they won’t get fixed / prioritized.
link