If you find a security vulnerability in sqltree, please report it responsibly:

1. Do not open a public issue.
2. Email the maintainer directly or use GitHub's private vulnerability reporting.
3. Include steps to reproduce the issue and any relevant details.

We aim to acknowledge reports within 48 hours and provide a fix or mitigation plan within 7 days.

• Connection string handling and credential storage
• SQL injection through the TUI interface
• Dependency vulnerabilities