This is very sad. With offers like this, there is a motivation for bad actors to join #opensource projects as developers and hide a backdoor or vulnerability in their code.

Similar offers can turn developers into #insiderthreat and more reviews and #security audits will be needed - more funds for open source projects needed for operations and processes instead of salaries for developers to pay their great work and effort.

#0day #vulnerability #audit #backdoor #development #cybersecurity #pentest #redteam

nostr:note1mjfgc8hay7z6yedr27q4jnfk88tlhrdx09c3k7a5tykxap6zg9zsh3938l