Report security vulnerabilities to civilsphere+security@aic.fel.cvut.cz. We are a small team, we will acknowledge your email as soon as we can. Report security vulnerabilities in third-party modules to the person or team maintaining the module.
When our team receives a security bug report we will take the following steps:
- Confirm the problem and determine the impact.
- Prepare a fix to the latest current version.