If you discover a security vulnerability, please report it privately through GitHub Security Advisories:
- Go to the repository's Security tab
- Use Report a vulnerability to submit details
Please do not open public issues for exploitable vulnerabilities.
Include as much of the following as possible:
- Affected component or file
- Impact and severity assessment
- Reproduction steps or proof of concept
- Suggested mitigation (if known)
- I will acknowledge reports as quickly as possible.
- I will investigate, validate, and determine remediation steps.
- I will coordinate disclosure and release timing after a fix is available.
This policy applies to the contents of this repository, including scripts and documentation.