Report vulnerabilities privately through GitHub Private Vulnerability Reporting:
https://github.com/wranngle/n8n_knowledge_base/security/advisories/new
If that link is unavailable, email cody@wranngle.com.
Expected response: best-effort acknowledgement, typically within 7 days.