Please do not open public issues for security vulnerabilities.
Report vulnerabilities privately via repository security advisories or by contacting the maintainers directly. Include:
- affected versions,
- reproduction details,
- potential impact,
- suggested mitigation if available.
We will acknowledge receipt as quickly as possible and provide coordinated disclosure timelines after triage.