Summary: We take security seriously. If you find a vulnerability, please follow the steps below to report it privately via GitHub Private Security Advisory. We commit to investigating reports promptly, patching supported versions, and coordinating with you on a responsible disclosure timeline.

• Supported Versions
• Reporting a Vulnerability
• Responsible Disclosure
• Credits

We release patches for security vulnerabilities as needed.

Only the latest major version of spellbookx/devkit projects is supported with security updates.

If you discover a security vulnerability:

1. Do not open a public issue.

   The security issue must be reported to us privately.

2. Contact us directly via GitHub Private Security Advisory.

3. Please include as much detail as possible:

   • The affected version(s)
   • Steps to reproduce
   • The potential impact
   • The specific spellbookx/devkit project affected

We kindly ask that you:

• Give us a reasonable amount of time to investigate and patch before public disclosure.
• Avoid exploiting the vulnerability beyond what is necessary for a proof of concept.
• Coordinate with us on the disclosure timeline.

We deeply appreciate the community’s help in keeping the spellbookx/devkit projects.