This project is currently in early release. Security fixes are provided for the latest released 0.1.x line.

Please do not disclose vulnerabilities publicly in issues.

To report a vulnerability:

1. Open a private GitHub Security Advisory for this repository (preferred).
2. If you cannot use advisories, open a public issue requesting private maintainer contact without disclosing exploit details.

We will acknowledge valid reports and coordinate a fix and disclosure timeline.