If you believe you have found a security vulnerability, please do not open a public GitHub issue.
- Preferred: use GitHub Security Advisories ("Report a vulnerability") if enabled for this repository.
- If advisories are not available, open an issue with minimal detail and request a private channel.
Please include:
- A clear description of the issue and impact
- Steps to reproduce (proof-of-concept if possible)
- Affected versions/commit (if known)
- Any suggested fix or mitigation
Security fixes are provided for the latest version on the default branch.