Created by: jsyeo
I initially reported the CSRF vulnerability to @graysonwright's email in the gemspec but the email got bounced back. We probably should fix that.
Also, the repository doesn't include instructions about reporting vulnerabilities so I thought maybe we should include one.