Please report security issues responsibly and privately.

• Email: security@your-domain.example
• Do not create public GitHub issues for vulnerabilities.
• Provide a clear description, impact, and steps to reproduce.

We will acknowledge receipt within 72 hours and work with you on a coordinated disclosure.