Please report security issues privately via GitHub Private Vulnerability Reporting.

Public issues are fine for non-security bugs and feature requests. For anything that could let an attacker exploit users of this package (unauthenticated access, code execution, credential exposure, supply-chain issues), use PVR — I'll triage as time permits.

Only the latest released version of gmaps-mcp on PyPI receives security updates. Pin >= 0.1.3 to stay on a patched version of the HTTP transport.