If you find a vulnerability and would like to disclose it, please email [email protected] with details of the vulnerability.

We will aim to respond to security issues within 72 hours of receiving them and will provide updates on a regular basis (at least once every 48 hours).

Public disclosures of vulnerabilities will be added to this policy and an issue will be created to mark when a vulnerability has been resolved.