If you discover a vulnerability, please report it privately via GitHub Security Advisories on the affected repository.

We acknowledge reports and work on a fix as soon as possible.