If you believe you have found a security vulnerability, please open a private report if your hosting platform supports it.

If you must report publicly, please include minimal details needed to reproduce and avoid posting exploit payloads.

This project is currently early-stage. Security fixes are applied to the latest main branch.