Security

SECURITY.md

Security Policy

Reporting a Vulnerability

If you discover a security vulnerability, please report it responsibly.

Do NOT report security vulnerabilities through public GitHub issues.

Please use GitHub Security Advisories to report vulnerabilities privately.

What to Include

A description of the vulnerability
Steps to reproduce
Potential impact
Affected versions
Suggested fix (optional)

What to Expect

Acknowledgment within 48 hours
Initial assessment within 7 days
Resolution of critical issues within 30 days

There aren't any published security advisories