Only the latest released version of steer-core receives security updates.

Please do not open a public GitHub issue for security vulnerabilities.

Instead, report them privately by emailing nsiemons@stanford.edu with a description of the issue, steps to reproduce, and any relevant details.

You should receive an acknowledgement within a few business days. Once the issue is confirmed and a fix is available, we will coordinate disclosure and credit you in the release notes unless you prefer to remain anonymous.