Please do not open a public GitHub issue for security vulnerabilities.

Report vulnerabilities privately via GitHub Security Advisories or by contacting the maintainer directly.

Include:

• A description of the vulnerability
• Steps to reproduce
• Potential impact
• Suggested fix (optional)

You can expect an acknowledgment within 7 days.