Security fixes are applied to the currently maintained default branches:
maindevelop
Please do not open public GitHub issues for security reports.
Use GitHub private vulnerability reporting:
We will acknowledge valid reports and work on a fix as quickly as possible.