evolver-tools is built using only Python standard library modules with no external dependencies, which minimizes the attack surface. However, if you discover a security vulnerability, please report it by:

1. Opening a draft security advisory at https://github.com/evolver-dev/evolver-tools/security/advisories
2. Or emailing evolver@evolver.dev

Do not report security vulnerabilities through public GitHub issues.

We will acknowledge receipt within 48 hours and provide an estimated timeline for a fix.

• Description of the vulnerability
• Steps to reproduce
• Affected tool(s) and version(s)
• Potential impact
• Any suggested mitigation (if known)