Hello! Thank you for wanting to disclose a possible security vulnerability within the Doorkeeper gem! Please follow our disclosure policy as outlined below:

1. Do NOT open up a GitHub issue with your report. Security reports should be kept private until a possible fix is determined.
2. Send an email to Jon Moss, Doorkeeper's maintainer, at doorkeeper AT jonathanmoss.me. You should receive a prompt response.
3. Be patient. AS Doorkeeper in a stable maintenance phase, we want to do as little as possible to rock the boat of the project.

Thank you very much for adhering for these policies!