That’s important information, and should be included in a public announcement of an audit!
Even still: pro bono audits carry reputational value, meaning that there’s no way to fully discharge the conflict of interest here. The only correct way to do it is to refuse to endorse the software you audit; an audit that enthusiastically recommends the software it covers sets off red flags.
Edit: I misread the post, which does explicitly state that the audit was conducted for free.
Even still: pro bono audits carry reputational value, meaning that there’s no way to fully discharge the conflict of interest here. The only correct way to do it is to refuse to endorse the software you audit; an audit that enthusiastically recommends the software it covers sets off red flags.
Edit: I misread the post, which does explicitly state that the audit was conducted for free.