If you discover a security vulnerability in Sash, please report it through GitHub's private vulnerability reporting.

Please do not open a public GitHub issue for security vulnerabilities.

Once the issue is confirmed, a fix will be prioritized and released as soon as possible.