Security reporting guidelines? Development source?
I believe I have found a security issue in Pixelpost. While I've checked the current release version (1.4.2), I assume much work has gone into the next version already, and it would be nice to check the up-to-date source before bugging anyone about it. Is there a snapshot, or anonymous CVS somewhere, that I can look at?
Failing that, where exactly should security problems (and potential solutions) be reported? I'd rather not lay out the details on a public forum for anyone to get ahold of before a fixed version can be released.