To report a security issue, you can open a new issue.

Vulnerabilities related to our Docker image will not have priority in fixes, since it doesn't open any ports to the internet and, thus, the vulnerabilities are most related to the security scanners.

We use issues to track vulnerabilities to have full transparency of our current state of security, and all fixes will be prioritized.