Finding a vulnerability by looking at the diff that fixed it is very different than just looking through the code.
They're saying to do that scan to every diff before release, to see if it finds anything.
alt Hacker News
They're saying to do that scan to every diff before release, to see if it finds anything.