This project is currently in the 0.1.x stage. Security fixes are expected to target the latest code on the default branch unless a maintainer states otherwise.

Please do not report security vulnerabilities through public GitHub issues, pull requests, or other public channels.

Use a private reporting channel instead:

• GitHub Private Vulnerability Reporting or GitHub Security Advisories, if enabled for this repository
• A direct private channel to the maintainers, if one has been provided

When reporting, include:

• A clear description of the issue
• Steps to reproduce the problem
• Impact assessment
• Any proof-of-concept, logs, or screenshots that help validate the report

Maintainers will try to:

• Confirm receipt of the report
• Assess severity and impact
• Work on a fix or mitigation
• Coordinate disclosure after a fix is available when appropriate

Please allow maintainers reasonable time to investigate and remediate a reported issue before public disclosure.