Security updates are provided for:
mainbranch (latest)
Please do not open public issues for security vulnerabilities.
Use one of these private channels:
- GitHub Security Advisories (preferred)
- Maintainer contact via private GitHub message
Include:
- Affected component/file
- Reproduction steps or proof of concept
- Impact assessment
- Suggested mitigation (if available)
- Initial triage: within 72 hours
- Status update: within 7 days
- Fix timeline: depends on severity and complexity
We follow coordinated disclosure. Please allow time for a patch before public disclosure.