Security fixes are provided for the latest released version.

Please do not open public issues for security vulnerabilities.

Report privately to the maintainers with:

1. A clear description of the issue.
2. Reproduction steps or proof-of-concept.
3. Potential impact.
4. Suggested mitigation (if available).

The maintainers will acknowledge receipt, assess impact, and coordinate a fix and disclosure timeline.