What is the downside? I was thinking it could compromise software security, although my layman understanding is we’re better off if the open source community finds and makes problems visible?
Or there are other software secrets that we wouldn’t want state adversaries to see, like things that block your access under export control laws?
