Please do not open a public issue for security reports.

Preferred reporting channels:

• Email: security@authensor.example (replace with a real address)
• If the repository has GitHub Security Advisories enabled, you can also report privately there.

We will acknowledge receipt as soon as practical and coordinate a fix and disclosure timeline.