If you discover a security vulnerability in this project, please report it responsibly.

Please do NOT open a public GitHub issue for security vulnerabilities.

Instead, use GitHub's private vulnerability reporting:

1. Go to the Security tab of this repository
2. Click Report a vulnerability
3. Fill in the details (description, steps to reproduce, impact)

We will acknowledge receipt within 48 hours and aim to provide a fix or mitigation plan within 7 days.

• We will work with you to understand and resolve the issue before any public disclosure.
• We will credit reporters in the release notes (unless you prefer to remain anonymous).