If you discover a security vulnerability, please report it by opening an issue with the [SECURITY] prefix in the title.

Do not include exploit details in public issues. If the vulnerability is sensitive, email the maintainer directly via their GitHub profile.

We will acknowledge the report within 48 hours and provide a fix as soon as possible.