Only the latest tagged release is supported with security fixes.
Please do not open a public GitHub issue for security vulnerabilities.
Instead, report it privately via GitHub Security Advisories.
You should get a response within a few days. Once confirmed, a fix will be released and the advisory published with credit (unless you prefer to stay anonymous).