If you discover a security vulnerability, please:

1. Do not open a public GitHub issue
2. Email [email protected] with details
3. Include "SECURITY VULNERABILITY" in the subject line
4. Provide a detailed description of the vulnerability

• Initial Response: Within 48 hours
• Assessment: Within 1 week
• Fix Release: Within 2 weeks (depending on complexity)