If you discover a security vulnerability, please report it privately:

1. Do NOT open a public issue
2. Email security concerns to the maintainers directly
3. Include steps to reproduce and potential impact

We will respond within 48 hours and work with you to understand and resolve the issue.

We provide security updates for the latest release only.