[digitalPhonix]

> that possibly exploited a security gap

It set a HTTP user agent string...

[silisili]

I'm quoting the article without technical analysis or personal biases.

> But he wanted to be “properly acknowledged” for possibly revealing “a significant security gap

[digitalPhonix]

Sure, for context the image in the article captioned

> Jarczak’s code shows that his fork of OrcaSlicer identifies itself as “BambuStudio,” but mostly just by saying that out loud and hoping Bambu’s systems don’t ask any questions. Image: Bambu

is the “security gap” claimed by Bambu