Reporting Security Vulnerabilities
In order for the team to best address critical security vulnerabilities, we ask that you email firstname.lastname@example.org to let us release a patch prior to disclosure. This ensures that users within the community have a chance to apply appropriate software patches and upgrades prior to potential exploits being widely available.
In the event that you are also submitting a patch for a vulnerability, we ask that you create an appropriate pull request on the GitHub project repository and email email@example.com with details and a link to the pull request.
Reporting Other Bugs
Non-security related bugs should be filed in the appropriate GitHub project issue tracker.