Please do not report security vulnerabilities through public GitHub issues.

Instead, report them via GitHub's private Security Advisories feature. Include as much detail as possible: a description of the issue, steps to reproduce, and potential impact.

You can expect an acknowledgment within 48 hours and a resolution timeline once the issue is confirmed.