If you discover a security vulnerability in drefs, please report it by emailing the maintainers directly rather than opening a public issue.

drefs is a static analysis tool that reads Python source files and does not execute them. The primary attack surface is malformed input files or crafted objects.inv URLs.