If you've identified a security vulnerability, contact the maintainer privately and quickly at nathaniel.chappelle@proton.me. Send any and all information you may have, making sure to leave as much personally identifying information as possible confidential.