If you discover a security vulnerability, please report it via the Report a Vulnerability page.

Please include as much additional information as possible to help us understand and resolve the issue, including:

• A description of the vulnerability
• Steps to reproduce the issue
• Any relevant logs or screenshots

For third-party modules, please consider also reporting the vulnerability through the npm support form by selecting "Report a security issue or abuse".

To learn more about securing application repositories, please see GitHub's documentation on security policies.