Please do not use older minor versions, as these are not supported. Only the latest minor version will receive patch releases.
To report a security issue, please privately report a security vulnerability through GitHub. If you do not have a GitHub account, please email [email protected] with a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue. We will endeavour to respond within 3 working days of your email.
If an issue is confirmed as a vulnerability, we will open a Security Advisory. This project follows a 30 day disclosure timeline.