This library has only a single dependency on Jakarta JSR 330 library with annotations, which means that any security issue found should be reported immediately.
In case if a vulnerability is found, please open an issue with the detailed explanation of the vulnerability.
Pull requests are always welcomed.