Please do not open a public GitHub issue for security vulnerabilities.

To report a security issue, email the maintainers at:

[SECURITY_EMAIL] — replace with your actual security contact before publishing this repository.

Include:

• A description of the vulnerability and its potential impact
• Steps to reproduce or a proof-of-concept
• Any suggested fix if you have one

You can expect an acknowledgement within 48 hours and a status update within 7 days.

We appreciate responsible disclosure and will credit reporters in the release notes unless you prefer to remain anonymous.