Probably? FreeBSD has had a large increase in security advisories the past couple months. More in the last two months than all of 2025 combined.
replyThose advisories all came from outside sources, most notably calif.io.
replyIt's not clear to me that FreeBSD found any of them internally ...
Calif.io have access to Mythos Preview which they've used to find a macOS kernel memory corruption exploit on Apple M5: https://blog.calif.io/p/first-public-kernel-memory-corruptio...
replyIt's probably the right approach to onboard a few independent security companies and task them with reviewing multiple OSS projects than it is to onboard each project individually.
“Oi, you got a loicense to make secure software there?”
replyI joke but that is the world we are moving towards. I don’t think many on HN have thought through the second and third order implications.