The project maintainers take security seriously and appreciate responsible vulnerability disclosure efforts.
Do not use public GitHub issues to report security vulnerabilities.
To report a security vulnerability:
- Navigate to the Security tab of this repository
- Click "Report a vulnerability"
- Provide a description of the vulnerability and steps to reproduce
After submission, you'll receive updates on the progress toward a fix. The maintainers may request additional information or guidance.
Timeline: The project aims to address reported vulnerabilities within 90 days.
The maintainers thank contributors for helping keep the project secure.