Security fixes will generally be applied to the latest minor release series.

Please DO NOT open public issues for suspected security problems.

1. Email: kstaniek@gmail.com with a detailed description.
2. Include: version, environment, steps to reproduce, expected vs actual behavior, potential impact.
3. You will receive an acknowledgement within 5 business days.

If you have a fix, you may include a patch or branch reference.

We aim for coordinated disclosure. After a fix is released and users have had time to update, details may be published.