If you believe you have found a security vulnerability, please DO NOT disclose it publicly until we’ve had a chance to fix it.

Please don’t report security vulnerabilities via GitHub issues, instead report them privately via the Security Advisories page.