If you find a critical security vulnerability in this repo, you can report it directly by email to the main maintainer on [email protected]. This will allow publishing a new safe version before the vulnerability starts being exploited.