Please use the below methods to contact Reddit's Security team to report security vulnerabilities. Do not raise issues in Github or publicize your finding before allowing us to triage the report via our public bug bounty program.
Contact: [email protected]
Public Bug Bounty: https://hackerone.com/reddit?type=team