Security fixes are handled on the latest code on the default branch.

Please do not open a public GitHub issue for security problems.

Preferred path:

1. Use GitHub private vulnerability reporting if it is enabled for this repository.
2. If that is not available, contact the maintainer privately through GitHub.

Please include:

• Affected route, file, or feature
• Steps to reproduce
• Expected impact
• Any suggested mitigation or fix

This is a solo-maintained project, so response times are best-effort. Valid reports will still be investigated.