Please report security vulnerabilities privately. Do not open a public issue, pull request, or discussion for a suspected security problem.

Use GitHub's private vulnerability reporting for this repository: https://github.com/neilberkman/req_dpop/security/advisories/new

(From the repository's Security tab, choose Report a vulnerability.)

Reports are acknowledged as quickly as possible, and you will be kept informed while the issue is investigated and a fix is prepared. Please allow a reasonable period for a fix to ship before any public disclosure.

For coordinated disclosure and CVE assignment across the Erlang/Elixir ecosystem, you may also contact the Erlang Ecosystem Foundation's CNA at cna@erlef.org.

Security fixes are applied to the latest release on Hex. Please upgrade to the latest version before reporting an issue.