I do not currently have a workflow for handling security issues within my projects. If you find a security vulnerability, please open an issue on the project (do not provide details on how to reproduce the issue) and we can discuss a method of communication from there.