PadPulse is a small browser project and security fixes are applied to the latest version on the default branch.

• Do not open a public issue for security vulnerabilities.
• Use GitHub private vulnerability reporting if it is enabled for the repository.
• If private reporting is not enabled yet, contact the maintainers through a private channel before disclosing details publicly.

• PadPulse is a static client-side project.
• Do not include personal controller identifiers or sensitive system information in public reports unless necessary.
• If a report depends on browser-specific behavior, include browser name and version.