We encourage responsible disclosure practices for security vulnerabilities.
If you believe you've found a security-related bug, email Andrew Svetlov <mailto:[email protected]>_ or/and
Sviatoslav Sydorenko <mailto:[email protected]>_
instead of filing a ticket or posting to any public groups.
We'll try to assess the problem and disclose it in a responsible way.