Google used AI to mass-generate security vulnerability reports on FFmpeg — including a 'critical' bug in an obscure 1993 game codec — and went to the media before patches could be deployed. Volunteers faced a flood of high-severity reports they never had resources to fix. The result: FFmpeg pushed back publicly, donations rose, and Google eventually started sending patches.