Only the last Version have Security fixes. But keep in mind that the Software download arbitrary VM and you let them run. A proper Network segmentation should be applied.

Please use the Security Tab in Github to report vulnerabilities. There are no Bounties on vulnerabilities.