Intellectual2 exactly as the venerable unwat explained, the dev team are not overwhelmed/behind, we have a core dev team whose priority is to ensure the main scope and primary focus of the OS as outlined on the site is constantly being worked on to ensure the OS meets the requirements in an area which has constantly moving goalposts. Cybersecurity as I imagine you already appreciate is not a field where you can stand still.
We also have various other contributors who work on the roadmap/requirements to provide assistance for features, updates etc as requested by the lead dev/core dev team.
While additional funding is always welcome, appreciated, and put towards the needs of the OS what we don't do is offer feature/bounty style funding.
Also while the project always appreciates good ideas, ideas without a pathway to implementation and commitment to maintaining the code per code review and feedback would generally leave it as low-priority.