In many ways you are wonderful, but you really need to think about how you release new versions of WordPress. We’ve had, what, two emergency versions in as many weeks, due to security vulnerabilities. But that’s just part of it. WordPress 2.8 was released June 10, 2009. We are now up to 2.8.4 So, that means there have been 4 new versions in two months. That’s ridiculous and sounds more like the Keystone Cops than professional software development.
Instead of frantically pumping new (and obviously poorly tested) versions out the door, you need to do what the pros do. Release one, maybe two versions each year and test them thoroughly first. A solid testing suite might well catch those vulnerabilities and bugs before you ship the new version.
That’s what Drupal does, they have automated testing that patches the code and runs tests against it. That’s what most software vendors do. WordPress needs to do the same.