> in the infosec space those with closed source products (e.g. WAF's) laugh at those with open source products when it comes to the numbers of embarrassing and business-damaging zero-days reported.
Because no one reports theirs? It's not a good reason to laugh if you think of it.
Because no one reports theirs? It's not a good reason to laugh if you think of it.