Yup. This whole experience was immensely frustrating. First people complain that the code isn't open source and as soon as it is available suddenly there are piles of people swooping in to shit on everything. That's not going to make scientists write better code. It is going to make scientists refuse to open their code.
The only thing more frustrating is when I see people swoop into open source code with "security vulns" that are based on nonsense threat models.
The only thing more frustrating is when I see people swoop into open source code with "security vulns" that are based on nonsense threat models.