Being on the outside now, I always say that as much transparency as possible is preferable. CFIUS's annual report does include information on the types of risks it reviews and the mitigation measures that have been taken. I know that the relatively new assistant secretary has been doing more public engagement to try to educate businesses on what CFIUS sees as the risk.
I'm always in favour of as much transparency as possible. CFIUS does provide due process letters, for example if it may be blocking a transaction, to provide information to that particular party about the risk to the extent that it can be shared. I do understand that some information, when it's classified, can't be shared broadly either with parties or with the general public.