If you think you've found a vulnerability on this project, please send me (Miguel Grinberg) an email at miguel.grinberg@gmail.com with a description of the problem. I will personally review the issue and respond to you with next steps.

If the issue is highly sensitive, you are welcome to encrypt your message. Here is my PGP key.

Please do not disclose vulnerabilities publicly before discussing how to proceed with me.