This repository publishes code as-is.

Security handling is best-effort.

Preferred: GitHub Security Advisories for this repository, via the Security tab, if available.

Otherwise: use the contact listed in the repository metadata.

There is no bug bounty.

Severity, validity, and prioritization are determined solely by the maintainer.

This software is provided as-is, without warranty of any kind.

Use in security-sensitive contexts is entirely at your own risk.