Please report security issues privately to the repository owner instead of opening a public issue.
Include:
- affected version or commit
- reproduction steps
- expected and observed behavior
- impact assessment
The project is licensed under MIT and maintained as an open source project.