Please report security vulnerabilities by emailing security@example.com or opening a private security advisory on GitHub.

Do NOT open a public issue for security vulnerabilities.

We will respond within 48 hours and work with you to resolve the issue before public disclosure.

• Keep dependencies up to date
• Review code changes before merging
• Use environment variables for sensitive data
• Never commit API keys, passwords, or tokens
• Enable GitHub's security features (Dependabot, Secret Scanning)