PHCDevworks applies security fixes to the current major release of this package. Please use the latest published version of the relevant Spectre package whenever possible.

Do not open a public issue for security problems.

Please use GitHub Security Advisories for the affected repository whenever possible. If that is not available, contact the maintainers through GitHub.

Include:

1. A clear description of the issue and its impact
2. Steps to reproduce or a proof of concept
3. Affected versions, if known
4. Any suggested mitigation

1. We aim to acknowledge reports within 48 hours.
2. We aim to provide an initial assessment within 5 business days.
3. We will coordinate disclosure timing with the reporter when possible.

• Keep dependencies up to date.
• Review automated dependency updates and advisories.
• Follow framework and deployment security best practices in consuming apps.
• Avoid exposing sensitive data through logs, examples, or documentation.

For non-sensitive security questions, open an issue or discussion in this repository.