Security Policy Reporting a Vulnerability If you discover a security vulnerability, please report it responsibly: Do not open a public GitHub issue. Email the maintainers. Allow time for assessment before public disclosure.