Please do not open a public GitHub issue for security vulnerabilities.

Email security@useplunk.com (or the package maintainer) with:

• A description of the vulnerability.
• Steps to reproduce.
• Potential impact.

You will receive a response within 48 hours. Once verified and patched, a CVE will be requested and a new release published. Credit will be given unless you prefer to remain anonymous.