hello, i find a security bug about this project, and it affects many project who use this http-swagger project.

how can i send report "safely" to you?