This policy outlines the commitment and practices of the go-openapi maintainers regarding security.

If you become aware of a security vulnerability that affects the current repository, please report it privately to the maintainers.

Please follow the instructions provided by github to Privately report a security vulnerability.

TL;DR: on Github, navigate to the project's "Security" tab then click on "Report a vulnerability".