If you believe you have found a security vulnerability in this project, we encourage you to let us know right away. We take all security issues seriously and will respond promptly.

• Please email us at [email protected].
• Include as much detail as possible:
  • A description of the vulnerability.
  • Steps to reproduce the issue.
  • Potential impact.
  • Any suggested mitigations or fixes.
  • Your HackerOne handle, if you have one (for recognition or follow-up).

Please do not open a public issue for security vulnerabilities.