Security fixes are applied to the latest main branch release.

Please report suspected vulnerabilities privately to:

• oss@senseibelbi.dev

Include:

• Affected version/commit.
• Reproduction steps or proof of concept.
• Potential impact.
• Any suggested remediation.

Please do not open a public issue for unpatched vulnerabilities.

• Initial acknowledgement: within 3 business days.
• Triage and risk assessment: as quickly as possible based on severity.
• Coordinated disclosure after a fix is available.