How do developers deal with security issue reports on GitHub? | Synapse