Confidential gitlab tickets for security issues?

We sometimes have anonymous people who find security issues in Tor and want to report them. Gitlab supports "confidential" tickets for this, but it would be nice if the reporter can flag an issue as potentially confidential, and/or the moderator could mark the resulting gitlab ticket confidential. This is useful in case the bug report is an exploitable vulnerability that requires time to evaluate and produce a patch before someone else makes an exploit.

(This is for anonticket specifically: I would like both bug reporters and moderators to flag an issue on gitlab.)