If you believe there is a security issue related to any Pow libraries please privately report it to any of the maintainers. Do not disclose the security issue publicly.

You can use the email of any organization maintainers, request for a maintainer to contact you privately on the #pow Slack channel, or at elixirforum.com.

Please do not disclose the security issue publicly until a CVE has been issued. The issue will be reported through the Github Security Advisories and to the Elixir Advisory Database

The affected version(s) may also be retired on hex.