We release patches for security vulnerabilities in the latest version.
Please do not report security vulnerabilities through public GitHub issues.
Instead, please report them via GitHub's private vulnerability reporting feature:
- Go to the repository's Security tab
- Click "Report a vulnerability"
- Fill in the details
We aim to respond within 48 hours and will keep you updated on the fix.
- Keep your dependencies up to date
- Use
pip auditto check for known vulnerabilities - Report any security concerns promptly