Please use the below methods to contact Reddit's Security team to report security vulnerabilities. Do not raise issues in Github or publicize your finding before allowing us to triage the report via our public bug bounty program.
Contact: whitehats@reddit.com
Public Bug Bounty: https://hackerone.com/reddit?type=team