Security fixes are prioritized for the latest tagged release and main.
Please do not open public issues for suspected vulnerabilities.
Report security issues privately via GitHub Security Advisories:
Include:
- affected version/commit
- reproduction steps or proof of concept
- impact assessment
- any suggested remediation
We will acknowledge reports as quickly as possible and coordinate disclosure once a fix is available.