If you are indeed finding a security vulnerability, please head to our Security Advisory Page. On this page you are able to Report a vulnerabilty or directly click here to create a new report.

Due to the nature of open source, I try my best to respond within one day after reporting this issue. I'm more than happy to support critical changes if really necessary.