At Snyk, we use our own security team to hand-curate their own CVSS to the most accurate degree in mind.
An in-depth look at how Snyk calculates it can be found here - https://snyk.io/blog/scoring-security-vulnerabilities-101-introducing-cvss-for-cve/