So you’ve found a security issue in an open source project – or maybe just a weird problem that you think might be a security problem. What should you do next?How to report a security issue in an open source projectMake a reasonable effort to report the issue privately to the maintainer(s).Give them a reasonable amount of time to fix the issue in private.If this fails, you may disclose the issue publicly.This general outline is broadly agreed-upon as good practice within the security and open so...