Do not open issues that might have security implications. It is critical that security related issues are reported privately so we have time to address them before they become public knowledge. Please use the email address of the repository owner to contact us directly.