love reading news articles that are like
Security researcher finds critical vulnerability in software_xyz
that have a line that goes something like
At the time of writing, the bug has not been patched
because you immediately know that some guy submitted this thing to hackerone, got shot down with a WONTFIX and decided to make that the company's problem. and frankly? i gotta respect it. if you're not gonna patch this vuln, then maybe you can go patch this leak in your share price i'm about to make for you