Comment by uecker
6 hours ago
The problem is that they get away too easily with bugs in their products they ship to customers. If this would come with some penalties, there would be some incentive to invest in security and this would probably often flow back to upstream projects.
Seriously? You think that curl gets away with bugs shipping to prod? And that's the major problem?
I don't agree with any of that.
Like a money-back guarantee?
Like you get when you buy e.g. MS products?
/s
I am not talking about the open-source projects, but the downstream products such as cars that integrate curl.