We care about the security of our products and open source projects and take security vulnerability reports seriously, with responsible disclosure.

Please report any discovered security vulnerabilities to security@thoughtbot.com.

You can use our PGP key to encrypt your disclosure email. The fingerprint of this PGP key is:

C31D 841D 55AC EC14 71D2  2CC9 84D7 308E BE7F EF18

We will respond as soon as possible with details about how we plan to handle the reported issue.