Why is that? I feel like every other go security vulnerability was reported by a security researcher there, so I assumed they have a decent engineering culture.
You're right they are one of the largest Go-based applications and get asked to test go releases.
My opinion is they have a poor engineering culture though and worse leadership that is abandoning open-source roots, chasing "mission critical" government/enterprise business.
