Only the latest released version is considered supported for security fixes.
Do not open public GitHub issues for security problems.
Use one of these private paths instead:
- GitHub Security Advisories for this repository
- direct maintainer contact if you already have an established private channel
When reporting, include:
- affected package version
- impact summary
- reproduction details or proof of concept
- any suggested remediation if available
We will try to acknowledge reports promptly, validate the issue, and coordinate a fix before public disclosure.