Is this a hot take?
I think microsoft joining the linux-distros mailing list is fine? like, they're shipping linux-proper in two actual products and maintain a massive linux cloud infrastructure. It makes sense for them to want to know about security issues in linux...
@noiob no, the linux-distros mailing list is a private mailing list where security issues are discussed before they're made public