If you find a security issue, please do not open a public issue with exploit details.

Instead, open a private security advisory or contact the maintainer through GitHub.

This project is educational, but we still treat reports seriously.