This project is maintained as a non-commercial open source project.
Currently, only the latest version (the main branch) is supported.
Older versions are not guaranteed to receive security updates.

If you discover a security vulnerability, please do not open a public issue.
Instead, report it privately by opening a GitHub Security Advisory

Alternatively, you may open a GitHub Issue with minimal details
and mark it clearly as a security concern.

As this is a non-commercial project, response times may vary,
but all reports will be reviewed in good faith.

• Please give the maintainer reasonable time to investigate and fix the issue
  before discussing it publicly.
• Avoid sharing proof-of-concept exploits in public forums until the fix is released.
• Once a fix is published, the vulnerability will be acknowledged in the release notes.