I think the bottom line here is:
Only selected people (commercial, canonical-support, etc) should be able to file private non-security bugs. However, people who are allowed to do this should be able to do it directly, without dancing around the security bit.
I think the bottom line here is:
Only selected people (commercial, canonical-support, etc) should be able to file private non-security bugs. However, people who are allowed to do this should be able to do it directly, without dancing around the security bit.