Please do not open a public GitHub issue for security vulnerabilities.
Use GitHub Security Advisories to report privately.
You should receive an acknowledgment within 72 hours. After validation, a fix and disclosure timeline will be coordinated with you.
- Pre-v1.0: only the latest preview is supported.
- Post-v1.0: latest minor and previous minor.