The latest release on the default branch receives security fixes.
Please report vulnerabilities privately through GitHub's Report a vulnerability feature instead of opening a public issue. Include affected versions, reproduction steps, and the expected impact where possible.
This project downloads public JPL ephemeris data and executes numerical Python dependencies. Reports involving dependency confusion, unsafe archive or cache handling, command injection, or artifact-generation workflows are especially useful.