The what3words team actively releases security fixes and we appreciate any support from our community towards this effort.

Please do not report security vulnerabilities on the public GitHub issue tracker. Our Vulnerability Report Form details the procedure for disclosing security issues.

Please report security bugs in third-party modules to the person or team maintaining the module. You can also report a vulnerability through the npm contact form by selecting "I'm reporting a security vulnerability".