This is a small, dependency-free utility, so the attack surface is minimal. Still, if you discover a security issue, please report it responsibly.
Please do not open a public issue for security problems. Instead, use GitHub's private vulnerability reporting for this repository ("Security" tab → "Report a vulnerability"). You'll get a response as soon as the maintainer is able.
The latest release on the master branch is supported. Older versions are
not maintained.