There is only one version track for broly so all patches will be applied to the latest version only.

Critical vulnerabilities can be responsibly disclosed to mail@aota.blog.
Bugs and low level vulneratbilities can be reported via repository issues.