This project follows a rolling release model. Security fixes are applied to the
latest release on the main branch.
Please do not open a public issue for security vulnerabilities.
Instead, report them privately via GitHub's private vulnerability reporting.
You can expect an initial response within a few days. Once a fix is available, we will coordinate disclosure and credit reporters who wish to be acknowledged.