If you've found a vulnerability or a potential vulnerability in athenz-issuer, please let us know at cncf-athenz-maintainers@lists.cncf.io. We'll send a confirmation email to acknowledge your report, and we'll send an additional email when we've identified the issue positively or negatively.