Only report security issues for the latest release at the time of discovering the issue.

Reporting a vulnerability can be done by opening an issue. We monitor the issues and will notice your security issue. No form of compensation is offered for reporting a security or other type of issue.