Security issues are handled under the supervision of the Django security team.

Please report security issues by emailing security@djangoproject.com.

The project maintainers will then work with you to resolve any issues where required, prior to any public disclosure.