100 days since I reported a vulnerability to Adobe.

So, 100 days since I reported a vulnerability to Adobe. I won't talk about the vulnerability, but I can say that they communicated with me through the report sent on HackerOne until they understood the problem.

After the vulnerability was validated, I got one more message (automatic) about the new status of the report: fixed. After the fix, which came a long time ago, I asked for updates/timeline/bounty/news. No more messages from them.

Based on the fact that the average time from submission to bounty is one month and several days (https://hackerone.com/adobe), at some point I asked HackerOne for clarifications/mediation.

It's been more than a month since I opened the ticket to HackerOne and not even a single message from them either.

100 days. Two parties. No replies after the fix. Just wanted that on record somewhere.