If you discover a security vulnerability, please report it responsibly:

1. Do NOT open a public issue
2. Email security concerns to the repository maintainer
3. Include a description of the vulnerability and steps to reproduce

We will acknowledge receipt within 48 hours and provide a timeline for a fix.