If you discover a security issue, please do not open a public issue with exploit details.
Email the maintainer with:
- a description of the issue
- impact assessment
- reproduction steps
- any suggested mitigation
I will acknowledge receipt and work on a fix as quickly as possible.