Report security issues to security@solpbc.org.
Please include:
- the affected crate or component,
- a concise reproduction path,
- expected impact,
- logs or artifacts with secrets, captured media, and private owner data removed.
We aim to acknowledge reports within 48 hours. There is no bug bounty commitment.