No, no, no, no NO! US government funding for CVE will remove any and all trust I have in the system. Instead, why not require commercial software companies to pay for the system? It's their bugs being reported anyway. The US Gov is too eager to have access to backdoors and exploits already, and this kind of funding would allow them a way to retain exclusive access to these for longer while the rest of us are spied on. Not OK.