Please do NOT report security vulnerabilities through public GitHub issues.
Instead, report them privately using GitHub's Security Advisories.
Please include:
- A description of the vulnerability and its impact
- Steps to reproduce or a proof of concept
- Affected version(s)
- Any suggested mitigation, if known
We will acknowledge your report as soon as possible and work with you on a fix and coordinated disclosure.
Security fixes are provided for the latest released version. Please upgrade to the latest release before reporting.