Do not report exposed provider keys, private generated assets, or security-sensitive details in public issues.

If you accidentally commit or share an OpenAI or fal.ai key:

1. Revoke the key at the provider immediately.
2. Generate a new key.
3. Remove the exposed key from local files, screenshots, logs, and commits.

For private security reports, use the GitHub Security tab for this repository.