Please do not file public issues for vulnerabilities or accidentally exposed secrets.

If you believe you found a security issue, contact the maintainers privately with:

• A concise description of the issue
• Steps to reproduce or validate it
• The affected version or commit
• Any known workarounds

Do not include production credentials, private app data, customer information, or unpublished operational details in public repository content.