To report a security vulnerability, follow these steps on GitHub to ensure the issue is communicated effectively and privately to the maintainers:

1. Navigate to the main page of the repository.
2. Click on the Security tab. If not visible, find it under the repository name dropdown menu.
3. Select Report a vulnerability to access the advisory form.
4. Provide detailed information to help maintainers assess and address the issue efficiently.

For more guidance, refer to Privately reporting a security vulnerability.

• Communicate clearly and respectfully.
• Provide detailed reproducible steps if possible.
• Review the existing advisories to avoid duplicate reports.

• Disclose the vulnerability publicly in any form before the communication process is completed and agreed upon.
• Alter repository code before discussing it with maintainers.

This project is fairly maintained, maintainers will do their best in addressing all reported security issues responsibly.

If no significant progress has been made within 90 days of the report, the issue may be publicly disclosed by the reporter to mitigate potential harms as a responsible disclosure measure.

This project is distributed under the MIT License and is provided "AS IS" without any warranty, express or implied. This includes but is not limited to warranties of fitness for a particular purpose or software security. Refer to the LICENSE file for more details.