In fact, I would encourage more unsupported maintainers to do just that. Stop rushing to fix bugs for people without a support contract. Patch security flaws at a more leisurely pace unless someone is willing to pay for greater urgency. Take your time and enjoy your hobby more, since that is what unpaid software maintenance is. Collaborate with other people only so much as it brings you joy.
💯 times this. Pay or it will be fixed when the maintainer has time. They have no obligations to fix or implement shit. Pay up or square up.
💯 times this. Pay or it will be fixed when the maintainer has time. They have no obligations to fix or implement shit. Pay up or square up.
I would add “if the bug report comes from a corporation refuse to fix it and ask for a patch”.
Well I assume if the developer is using the thing they are developing they may push themselves a bit with security flaws.