Security fixes are handled on the default branch and the latest public release line.

Do not open a public issue for suspected vulnerabilities, exploit details, or unsafe plugin behavior.

Report vulnerabilities through GitHub private vulnerability reporting: https://github.com/krotname/NppMarkdownTableEditor/security/advisories/new

Include:

• affected version or commit,
• Windows and Notepad++ versions,
• reproduction steps,
• impact assessment,
• suggested mitigation if available.

The maintainer aims to acknowledge valid reports within 48 hours and provide a remediation timeline after the impact is confirmed.