Bug hunters are <A HREF="http://news.zdnet.com/2100-1009_22-6106593.html?tag=nl.e589">turning the tables on software makers</A> in the debate over reporting flaws. In recent years, software companies have hammered out rules with researchers on disclosure, which cover how and when vulnerabilities are made public. Now flaw finders want something in return: more information from software providers on what they are doing to tackle the holes the researchers have reported.