Please report potential security vulnerabilities by email to matt.haberland@gmail.com. If the security vulnerability is recognized as a threat, a patch will be crafted privately to prepare a dedicated bugfix release.