If you believe you have found a security vulnerability, please do not open a public issue.

1. Email: [email protected] (or a maintainer directly)
2. Include details to reproduce and potential impact
3. We will acknowledge receipt and coordinate a fix

We aim to respond within 72 hours.