...while also saying it plans to stop assigning CVEs to most reported issues...
Of course! The vulnerability stops being vulnerable when we do not assign it a tracking number! Then all the bad guys have to guess which vulnerability is vulnerable. The good thing for Google is that they are effectively making it more difficult for the bad guys to be vulnerable. Yay!
/s
Hiding your faults is just security by obscurity. Google has no interest in making things better. They just want to milk you a bit more and that always functions better when the costs are kept low.