Security fixes are provided for the latest release line on main.

Please do not open public issues for security vulnerabilities.

Use one of these private channels:

1. Open a private GitHub Security Advisory draft for this repository.
2. Contact repository maintainers directly through GitHub if advisory access is unavailable.

Include:

• affected endpoint/tool,
• reproduction steps or payload,
• impact assessment,
• suggested mitigation (if available).

We will acknowledge receipt within 3 business days and provide a remediation timeline after triage.

1. Report received and triaged.
2. Fix prepared and validated.
3. New release published.
4. Advisory/changelog entry published with remediation guidance.