Only the latest release is supported.

• If you've found a problem in YOURLS, see the YOURLS security policy.
• If you've found a problem in php-saml, the SAML library being used, see the php-saml security policy.
• If you've found a problem in this plugin, email hello@awmb.uk with as much information as possible and steps to reproduce the issue.

There is no bounty programme, unfortunately -- this plugin is maintained by one person in his spare time.