To report a security vulnerability, please open a GitHub issue with the label security or contact the maintainers directly. Do not disclose the vulnerability publicly until it has been addressed.

We aim to respond within 48 hours and will work with you to resolve the issue promptly.