Please do not open a public GitHub issue for suspected security vulnerabilities.

Use GitHub's private vulnerability reporting for this repository. If private reporting is not available, contact the repository maintainers through the owning organization's published security contact.

When you report an issue, include:

• A clear description of the problem
• The affected files, scripts, or workflows
• Reproduction steps or a proof of concept, if available
• Any suggested mitigation or fix

Maintainers will review reports as quickly as possible, validate impact, and coordinate remediation. We may ask for additional details during triage.

Please avoid public disclosure until the issue has been reviewed and a fix or mitigation plan is in place.