There is no other reason to do it like this in a Lemmy post other than you want to publicly discredit the devs somehow. This is quite obviously a mistake and not a way to harvest admin passwords. Just fixing it and not trying to stir up shit would have been the right thing to do.
eugenevdebs@lemmy.dbzer0.com 1 day ago
“Why would I get the notice through the proper means where they can fix it, when I can make a public post that doesn’t actually solve the issue at hand?”
The same thing as people who think reddit threads are bug reports.
PhilipTheBucket@ponder.cat 1 day ago
I frequently make bug reports and contributions to all kinds of software. If this wasn’t something that impacted people’s security and trust evaluation, that’s exactly what I would have done.
Put it this way: If Android, or Outlook or whatever, was sending your admin password home to Google or Microsoft, and then people showed up to say it was probably an innocent mistake and why are you even making a big deal about it, just report it and let them fix it instead of creating drama, that would be absurd. That’s how I feel about the people here telling me the same thing.