I used to check up the progress on the openjdk website. They have regular meetings and the minutes of meeting were recorded. Also, there are regular updates on the github repo.
I am also now looking forward to Project Leyden and Galahad to produce some results.
You mean the new Spring Security deprecating some of the older APIs? I agree that the new version changes a lot of stuff but IMO these changes are much more welcome and more streamlined than before. It's better to do it once and you don't have to touch the security config all too often once it's done.
I don't understand the bad rap that Spring gets. Compared to the other frameworks around (Jakarta EE, etc) it's much more accessible than people realize, plus a very mature ecosystem.
It's a volunteer undertaking. Basically people volunteer to report, triage and communicate the issues. If any bug is confirmed to be a browser bug or a website bug, then some volunteers will create a ticket on the browser or websites support sites.
Again there is no guarantee that all issues will get resolved but it's a good place to see if the issue is widespread.
It would be more appropriate if the Imperium replied with the Navy Seal Copypasta.