You can report a vulnerability by filling the GitHub Security Advisories form. We will try to do our best to respond you and handle the matter as soon as possible.