If you believe you have found a security concern in this pattern — including implementation guidance that could lead to unsafe font handling or incorrect licensing behavior — please report it privately rather than opening a public issue.
Use the Report a vulnerability button on the Security tab of this repository.
Do not post sensitive details in public issues or pull requests.