If you discover a security vulnerability, please do not open a public issue.
Instead, use GitHub’s private vulnerability reporting feature to notify the maintainers securely:
👉 Report a vulnerability
If this option is unavailable, you can alternatively describe the issue privately to the maintainer team via GitHub (e.g., through a private message or organization contact).
We appreciate responsible disclosure and will respond as soon as possible.
Only the latest stable release of this project is supported for security updates.
When reporting a vulnerability, please include:
- Steps to reproduce the issue
- The potential impact
- Any suggested fixes or mitigations