If you discover a security vulnerability, please report it privately using GitHub's vulnerability reporting.

Please include:

• Description of the vulnerability
• Steps to reproduce
• Your assessment of severity

We will respond within two weeks to acknowledge the report and coordinate a fix.

Please keep the report confidential until a patch is available.