If you discover a security vulnerability, please report it privately to the maintainer instead of opening a public issue.
Include:
- affected package version
- Laravel/PHP version
- clear reproduction steps
- expected and actual behavior
- possible impact
Security reports are handled with priority.