To report a vulnerability in this repository, or in Google Cloud please contact the Google Security Team at https://g.co/vulnz. Read more about reporting vulnerabilities in kCTF here. You can read the threat model here.
To report a vulnerability in a dependency, please contact the upstream maintainer directly.