Thank you for writing this. The security and integrity of the EOS ecosystem will best be served by many creative people looking for flaws and vulnerabilities, and discussing them openly, and testing them and testing the countermeasures.

For example, today I learned that core developer Jonathan recently created and tested a malicious script (there are many of these) to attempt to spam a producing node with massive amounts of spurious requests. In his test, the node hardware needed about a second to deal with the sheer volume of incoming requests. The node then shrugged off the requests, ignoring them and continuing to produce blocks.

We will certainly need more such tests, and more people like you looking for vulnerabilities, asking hard questions, and having candid discussions. Welcome.