We take security reports seriously. If you discover a vulnerability in this project, please do not create a public issue.

Preferred disclosure

• Use GitHub's Security Advisories to privately disclose a vulnerability, or
• Send an email to security@involvex.com with: a short summary, steps to reproduce, affected versions, and a suggested mitigation.

Response

We will acknowledge receipt within 72 hours and work with you to triage and remediate the issue. We aim to release patches or mitigations in a timely manner.

Thank you for helping keep this project secure.