If you discover a security vulnerability, please report it responsibly.

Do not open a public issue. Instead:

• Email the maintainers (see repo owner), or
• Use GitHub Security Advisories for this repository.

Include a clear description and steps to reproduce. We will respond as soon as we can.