Then the submitters are spamming me to release a vulnerability, despite me messaging stating the next release will trigger the release (there are no release dates for my product, but usually every 3 months).
It's becoming overwhelming. What practices are other maintainers putting in place?