It's extremely rare that the developers of any given piece of software find their own security flaws. Almost 100% of the time, it's a third party that discovers and publishes security vulnerabilities . . . I wouldn't even consider subscribing.