This project follows a 90 day disclosure timeline.
To report a security issue, please follow instructions at https://docs.github.com/en/code-security/security-advisories/guidance-on-reporting-and-writing-information-about-vulnerabilities/privately-reporting-a-security-vulnerability#privately-reporting-a-security-vulnerability
We will respond within 30 days. If the issue is confirmed as a vulnerability, we will open a Security Advisory and acknowledge your contributions.