We take the security of this project seriously. If you discover a security vulnerability, please report it responsibly.
Please DO NOT file a public issue for security vulnerabilities.
Instead, please send an email to [email protected] with:
- A description of the vulnerability
- Steps to reproduce the issue
- Potential impact
- Any suggested fixes (optional)
We will acknowledge receipt of your vulnerability report within 48 hours and will send a more detailed response within 7 days indicating the next steps in handling your report.
We request that you:
- Give us reasonable time to address the issue before public disclosure
- Make a good faith effort to avoid privacy violations, data destruction, and interruption or degradation of services
- Not access or modify data that does not belong to you
Thank you for helping keep this project and its users safe!