Supported Versions

• The main branch and the latest tagged release are supported for security fixes.

Reporting a Vulnerability

• Please do not open public issues for sensitive reports.
• Email the maintainers or use a private channel to disclose responsibly.

Best Practices

• Do not commit secrets or personal configurations.
• Prefer environment variables and OS keychain for development.
• In Kubernetes, use External Secrets Operator to source secrets from a cloud manager.