Hi!

Please create a SECURITY.md document or some other mechanism for describing how to submit security vulnerabilities for the project.

Both github and the Open Source Security Foundation have guidelines, templates, and best practice recommendations for vulnerability disclosure handling.

Thanks!