According to comment #5, this is already almost public, should we keep this report private to coordinate with the Security Note ?
Or perhaps the OSSN can be done in the open too ?
According to comment #5, this is already almost public, should we keep this report private to coordinate with the Security Note ?
Or perhaps the OSSN can be done in the open too ?