If you expect a press-release-sized check, don't hold your breath. Big companies usually prefer to buy leverage instead, by upstreaming engineering time, sponsoring CI runners, donating hardware for NVENC and VideoToolbox tests, or funding maintainers rather than cutting a single headline check.
Concrete things that actually reduce risk are paying for continuous fuzzing with OSS-Fuzz on libavcodec, funding multi-arch CI that covers macOS, Windows, ARM and Nvidia GPU tests, and committing to upstream fixes instead of maintaining an internal fork. If a company does those three things you'll likely see fewer regressions, fewer security surprises, and much lower downstream maintenance cost than from a one-off bank transfer and a press release.
If you expect a press-release-sized check, don't hold your breath. Big companies usually prefer to buy leverage instead, by upstreaming engineering time, sponsoring CI runners, donating hardware for NVENC and VideoToolbox tests, or funding maintainers rather than cutting a single headline check.
Concrete things that actually reduce risk are paying for continuous fuzzing with OSS-Fuzz on libavcodec, funding multi-arch CI that covers macOS, Windows, ARM and Nvidia GPU tests, and committing to upstream fixes instead of maintaining an internal fork. If a company does those three things you'll likely see fewer regressions, fewer security surprises, and much lower downstream maintenance cost than from a one-off bank transfer and a press release.
they'll get one when the openbsd maintainers become millionaires