What's the preferred way to report a security vulnerability regarding Cider?

[maple3142]

There is no SECURITY.md, and it is not possible to privately reporting a security vulnerability either.

[cunev]

This just proves that this project completely doesn't care about security.
Ignore and use at your own risk vibe.

[GamingLiamStudios]

Please use our Discord ticket channel to report any Cider related security vulnerabilities. Do note however that Cider1 (the open-source one) is EoL and may not have any security patches in the future.
(yes I know this is several months old but for future reference in case anyone else finds something spicy)