Do not disclose vulnerabilities publicly in documentation issues.

• Report vulnerabilities through the private security channel.
• Include affected repository, impact, reproduction details, and version information.