Do not report secrets, private keys, or exploitable issues in public issues.

Use GitHub Security Advisories or another private channel to report vulnerabilities.