Bug in banned user code

There seems to be an issue with the code that updates the .htaccess file with banned IP addresses. Some IP addresses are coming through in an improper format, like this ::ffff:35.160.225.219, which ends up throwing a 500 error when the banning code gets added to the .htaccess file for that entry.

Even after clearing out the banned users list, unchecking the Enable Ban Lists, and disabling the banned users module, the plugin was still writing the offending code to the .htaccess file when an IP address was locked out from failed login attempts. So I had to disable write access completely for iThemes Security to the .htaccess file on one of my client’s sites to ensure that it wouldn’t add this code.

Is this issue on your radar? If so, is there a fix coming soon? I would like to be able to have the banned list enabled on their site, but can’t until this is fixed, because it takes the entire site down when those entries are added.