To our knowledge, this makes Apple Security Bounty the fastest-growing bounty program[sic] in industry history," Apple bragged in a statement
Whether or not this is a good thing depends on why it is the "fastest growing" programme
Apple has patched an iOS and iPad OS vulnerability that's already been exploited. Crediting an anonymous security researcher with reporting the issue, Apple said the problem involves an out-of-bounds write issue – which involves adding data past the end or before the beginning of a buffer. The impacts can bedata corruption, a …
Well said.
But....
Input validation like all error handling is so.... hard and time consuming.
That's why many of us have our own set of tools to do just that. I even went as far as to have a complete error handling system that I could drip into a project. Some PM's / Scrum masters hate the very thought of having to handle errors. Once a team get used to using a framework there is little effect on productivity. Even then, I've had instructions to remove it from a project due to NIH despite me donating the source code.