Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

They didn't post publicly about the vulnerability; they reached out via twitter to tell them that they had one, without giving any details about it whatsoever.


Telling everyone that there's a vulnerability is usually as bad as providing detailed steps. No one was looking, and now you've pointed them in the right direction.


> No one was looking

It's a16z, not Grandpappy's Model Railroad Museum Showcase ("Come see a photo of the tiniest steam wagon in Sheboygan!").


what do you want them to do? nothing? we've already established that they tried to make contact.


How about - go to the company's contact page, look at the email address there, and use that?


Lol what a reach




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: