To report a security vulnerability, please send an email to [email protected]. Once the issue has been validated, we will open a Github Security Advisory, if necessary.
Once the security advisory has been opened, contributors can collaborate on a private fork to fix the vulnerability. When the issue has been resolved, we will alert users of the past vulnerability by publishing the security advisory.