The maintainers may provide security fixes for the default branch and recent tagged or released versions, as described in the repository README. If you depend on an older branch or fork, open an issue to ask about support.

Please do not report security vulnerabilities through public GitHub issues.

• If the repository has GitHub private vulnerability reporting enabled, use the Report a vulnerability link on the Security tab.
• Otherwise, contact the maintainers through a private channel (for example, a security contact email in the repository README, if one is listed).

We aim to acknowledge valid reports in a reasonable time and coordinate remediation and disclosure with you.