Mastodon Feed
Dear bug reporter: please don't be an asshole, and don't file CVEs for bugs.
There is an Overreaction Industry built on these reports. Even if you try to file an honest #CVE for something, they'll twist it into automated scaremongering.
Please please please, don't participate in any program using CVSS. It's unfixably broken.
https://daniel.haxx.se/blog/2023/06/12/nvd-damage-continued/