We support the main branch.

If you believe you’ve found a security vulnerability, please do not open a public issue.

Instead, report it via:

• GitHub Security Advisories (preferred), if enabled for this repo
• Or email a maintainer listed in CODEOWNERS / repository contacts

Please include:

• A description of the issue
• Steps to reproduce
• Impact assessment (what an attacker could do)
• Any suggested mitigations

We will acknowledge receipt and work toward a fix as soon as possible.