This one matters, too: Carnegie Mellon issues guide to disclosing software vulnerabilities responsibly
"This is not a technical document ... This is about a very human process," says one of the authors from the prestigious Software Engineering Institute at Carnegie…