Please report (suspected) security vulnerabilities to Issues.

Remember to use a sensible disclosure policy when reporting security issues. Here are some general guidelines:

• Provide details of the vulnerability, including information needed to reproduce and validate the issue.
• Provide an indication of the severity of the issue.
• Do not publicly disclose the issue until we have had a chance to address it.