On Tue, 2017-05-02 at 19:32 -0500, Michael Catanzaro wrote:
Our updates already have metadata to indicate the severity of the security issue (low/medium/high), so we should start notifying daily only for the high priority security updates and see how well that goes.
Well - shouldn't you at least make an effort to announce this change very prominently to packagers *before* making it? They may, at present, not be paying a lot of attention to that field, if it's well known that it doesn't affect the prominence or frequency of notifications in practice.