We have early access to Android Security Bulletin patches and will be able to set up a workflow where we can have releases already built and tested prior to the embargo ending. For now, we've still been doing the builds after the embargo ends. It will mainly help when they screw up pushing to AOSP.
Isn’t that common to not release how a vulnerability can be exploited publicly until you have it patched? Like yeah it won’t stop bad actors familiar with the space, but it would prevent normies like me jumping on the train.
Isn’t that common to not release how a vulnerability can be exploited publicly until you have it patched? Like yeah it won’t stop bad actors familiar with the space, but it would prevent normies like me jumping on the train.