Security Policy Reporting a Vulnerability Do not open up a GitHub issue if the bug is a security vulnerability. Instead, send us email: [email protected].