Report security issues to security@quvantic.com.

Do not open public GitHub issues for security vulnerabilities.

This policy covers the llm-testing-toolkit package itself. Security issues in third-party LLM APIs (OpenAI, Anthropic) should be reported to those providers directly.

We aim to acknowledge reports within 48 hours and provide a fix timeline within 7 days.