If you discover a security vulnerability, please report it via GitHub Security Advisories.

Do not open a public issue for security vulnerabilities.

This repository uses:

• Dependabot: automated dependency updates (Cargo, GitHub Actions)
• CodeQL: static analysis for GitHub Actions workflows
• TruffleHog + Gitleaks: secret detection in git history
• cargo audit + cargo deny: Rust dependency vulnerability and license scanning