Instead of opening a GitHub issue for security vulnerabilities, send an email to our secure inbox: secure@expo.io.