This document is for security vulnerabilities only.

For general usage questions and non-security support, see .github/SUPPORT.md.

Please do not report security issues in public issues or discussions.

Use GitHub private vulnerability reporting when the repository enables it.

If private reporting is unavailable, open a temporary issue with only:

• Security report requested

and no technical details. Maintainers will move communication to a private channel when possible.

• Coordinated disclosure after a fix is available
• Security advisories and release notes should include mitigation guidance and affected versions