Only the latest published version of scroll-arrows receives security fixes.
Please do not open a public GitHub issue for security vulnerabilities.
Instead, report it privately through GitHub:
- Go to the Security tab of this repository.
- Click Report a vulnerability to open a private advisory.
- Include a description of the issue and its impact, steps to reproduce (or a proof of concept), and any suggested remediation.
You can expect an acknowledgement within a few days. Once the issue is confirmed and fixed, a patched version will be published to npm.