For Reporting any security risk or vulnerability start a discussion thread. Please refrain from posting sensitive information directly in the public forum, instead add the meta-information of the the vulnerability and if available reference to any public link or document regarding the the vulnerability and it's severity. We will reach out to you for more details regarding the security risk of the vulnerability and plan our course of action accordingly.
NOTE: If your email is not added publicly to your GitHub profile, please do mention your email address in the discussion thread.