Security patches are applied on the main branch only.

Please do not open public issues for security vulnerabilities.

1. Open a private GitHub Security Advisory for this repository.
2. Include reproduction steps, impact, and affected commit hash.
3. If available, include GPU model, CUDA version, and sanitizer/profiler traces.

You will receive acknowledgement within 72 hours, with triage status and next steps. Critical issues will be prioritized for patch and coordinated disclosure.

• Treat simulation config files as untrusted input in automated pipelines.
• Run third-party benchmark binaries in isolated environments.
• Validate output snapshots before downstream scientific use.