To report a security vulnerability to ArviZ, please go to https://tidelift.com/security and see the instructions there.