If you find a security issue, or evidence of one, please report it privately using Github's privately reporting a vulnerability feature.
Please include the requested information listed below (best effort) to help us better investigate, triage and resolve the issue:
- Full paths of source file(s) related to the manifestation of the issue
- The location of the affected source code (tag/branch/commit or direct URL)
- Supporting materials that demonstrate the issue such as screenshots, logs, proof-of-concept code
- Step-by-step instructions and configurations to reproduce the issue
- Impact assessment, including how an attacker might exploit the issue and any risks or consequences
We prefer all communications to be in English.