If you find any vulnerabilities in PokéLog, please don't open an issue as these are publicly accessible. Use GitHub's private vulnerability reporting feature by navigating to Security -> Advisories and clicking the Report a vulnerability button:

This method is preferred, however you may also contact the developer privately via email.