If you discover a security vulnerability, please report it through GitHub's private vulnerability reporting.

Please do not open a public issue.

We will acknowledge your report within 3 business days and aim to release a fix within 14 days of confirmation.