If you discover a security vulnerability in Compose Booster, please report it responsibly.

Do not open a public issue.

Instead, use one of these methods:

1. GitHub Private Vulnerability Reporting - Use the Security Advisories page to report privately.
2. Email - Send details to the maintainer via the email listed on the GitHub profile.

• Description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (if any)

• Acknowledgment within 48 hours
• Initial assessment within 1 week
• Fix or mitigation as soon as practical, depending on severity

We appreciate responsible disclosure and will credit reporters in the release notes (unless you prefer to remain anonymous).