To report a security vulnerability to SciPy, please first carefully read SciPy's Security guidance. If after that you want to report a security vulnerability, please use the Tidelift security contact. Tidelift will help coordinate the investigation by maintainers and, if needed, the fix and disclosure.