Security reports for Faramesh should be sent to security@faramesh.dev or submitted through the primary repository's GitHub Security Advisory flow:
https://github.com/faramesh/faramesh-core/security/advisories/new
Do not open public issues for vulnerabilities.