OpenClaw founder criticizes the GitHub security vulnerability reporting process for multiple issues

OpenClaw founder Peter Steinberger criticized the GitHub security vulnerability reporting process for multiple issues. He pointed out that currently, vulnerability reports are only accessible to administrators, making it difficult for teams to effectively distribute and collaborate on handling them.

In addition, GitHub's API functionality for vulnerability reporting is insufficient, as it cannot read or post comments through automated agents, which limits the automation capabilities of the security response process. Peter Steinberger also specifically noted that the current vulnerability reports are filled with a large amount of low-quality AI-generated content, requiring hours to sift through, further increasing the burden of security handling work.