Please do not open public GitHub issues for suspected security vulnerabilities.

Preferred channel:

• Use GitHub Private Vulnerability Reporting for this repository when available.

If a private reporting channel is temporarily unavailable:

• Open a minimal public issue without exploit details and ask the maintainer to continue privately.
• Include the affected version, impact, reproduction steps, and any suggested mitigation.

The project aims to acknowledge new reports within 7 days and share follow-up status until the issue is resolved or triaged.