Which versions of the project are currently being supported with security updates.

Report a vulnerability by creating an issue.

Vulnerabilities will be prioritized above all other work.

Expect to get an update on a reported vulnerability within a week of reporting it.

If the vulnerability is accepted, it will be prioritized over all other work.

If the vulnerability is declined, the issue will be closed with a comment including a reason.