Security is Critical for Open Source Projects

It is expensive to have a security team, and not all open source projects can afford it.