Please do not report security vulnerabilities through public GitHub issues.

To report a vulnerability, open a GitHub Security Advisory or email the maintainer directly (see the profile linked from the repository).

Include:

• Affected version(s)
• Description of the vulnerability
• Steps to reproduce
• Potential impact

Expect acknowledgement within 72 hours and a resolution or status update within 14 days.