Security updates are provided on a best-effort basis for the latest stable release line.

Please report suspected vulnerabilities privately by emailing: ramykronby@gmail.com

When reporting, include:

• A clear description of the issue
• Affected version(s)
• Reproduction steps or proof-of-concept
• Impact assessment (what an attacker could do)
• Any suggested remediation

Please do not open public GitHub issues for security vulnerabilities.

• Initial acknowledgment target: within 5 business days
• Status updates: provided as investigation progresses
• Fix and disclosure timing: coordinated based on severity and user impact

After a fix is available, a public advisory or release note may be published.