If you have encountered a potential security vulnerability in this project, please report it to us by reporting an issue and labeling it security. We will work with you to verify the vulnerability and patch it ASAP.

When reporting issues, please provide the following information:

• Component(s) affected
• A description indicating how to reproduce the issue
• A summary of the security vulnerability and impact

We request that you contact us via the issues tab using the security issue template and give the project contributors a chance to resolve the vulnerability and issue a new release.

If we verify a reported security vulnerability, our policy is:

• We will patch the current release branch.

• After patching the release branches, we will immediately issue new security fix releases for each patched release branch.

• A security advisory will be released on the project discussions detailing the vulnerability, as well as recommendations for end-users to protect themselves. Security advisories will be listed at Announcements