Please do not report security issues in public GitHub issues.
Report vulnerabilities privately through GitHub security reporting if it is enabled for this repository. If private reporting is not available, contact the maintainer through GitHub at https://github.com/aaronflorey.
When reporting an issue, include:
- a clear description of the vulnerability
- affected files, paths, or workflows
- reproduction steps or a proof of concept when possible
- impact assessment and any suggested remediation
Security fixes are applied on main and released forward. Older tags may not receive backports.