Report code/workflow vulnerabilities privately to kevin.maistros@colorgrade.pictures. Acknowledgement target: 72 hours.