While I can see why that's the case - If a surface breach is patched, any other flaws that could be exploited won't be accessible to an attacker.
On the other hand, software is built in layers. If there's an "inside" breach, i.e. I can get from an inner layer to a deeper layer, I would want to know about it.
Facebook were idiots to structure their policy this way.
On the other hand, software is built in layers. If there's an "inside" breach, i.e. I can get from an inner layer to a deeper layer, I would want to know about it.
Facebook were idiots to structure their policy this way.