Security fixes are applied to the latest version on main.
Please do not open public issues for vulnerabilities.
Use GitHub Security Advisories for private reporting when available. If that is not available, contact the maintainer directly through the repository owner account on GitHub.
Include:
- A description of the issue
- Steps to reproduce
- Impact assessment
- Suggested mitigation (if known)
You can expect an acknowledgment within 72 hours.