Security updates are only supported for the latest major version. Check the releases section for the current version.

This is a small project without any funding or bounty program.

If you find a vulnerability and want to report it, open an Advisory on the Security sections of the repository. Depending on the severity, it will be dealt with lower or higher priority.