If you discover a security issue, please report it via GitHub Security Advisories. We aim to acknowledge reports within two business days and will keep you informed as we triage and remediate the issue.

When reporting, please include:

• A clear description of the vulnerability and the affected endpoints or commands
• Step-by-step reproduction instructions
• Expected and actual behavior
• Logs, stack traces, and environment details (Python version, deployment method)
• A BMP screenshot if the issue affects rendered output