We take security bugs in our projects seriously. We appreciate your efforts to responsibly disclose your findings, and will make every effort to acknowledge your contributions.

To report a security issue, please use the GitHub Security Advisory "Report a Vulnerability" tab. DO NOT REPORT SECURITY VULNERABILITIES THROUGH PUBLIC GITHUB ISSUES.

We will send a response indicating the next steps in handling your report and may ask for additional information or guidance. After the initial reply to your report we will keep you informed and make an announcement in the release notes.