@rml
This is how the xz vulnerability was discovered: a Postgres dev was doing some performance testing, and noticed that ssh was working harder than normal.
@jacqueline