If you find a security issue in sift, please use GitHub's private vulnerability reporting flow for this repository instead of opening a public issue:

https://github.com/bilalimamoglu/sift/security/advisories/new

You can expect an initial response within 72 hours. If the vulnerability is confirmed, a fix will be prioritized and released as a patch version.

If the report is declined, you will receive an explanation of why.