Hey there!
Thanks for letting us know, we’re looking into it!
We’re comfortable with leaving this public for now, but in case you ever happen upon a security issue that should be fixed before telling others about it, we do have a contact form on our website under Security Issues 