Please report security vulnerabilities to [email protected]. It would be awesome if you could prepare a fix too.