The following table lists which versions of the project currently receive security updates:

We recommend all users upgrade to the latest supported version to ensure they receive security patches.

If you discover a security vulnerability, please help us keep the community safe by reporting it responsibly.

• Report via: security advisory form
• Do not open public issues or share details publicly until we have confirmed and fixed the vulnerability.
• We will acknowledge receipt within 48 hours.
• You can expect status updates at least once every 7 days until the issue is resolved.
• Once the vulnerability is fixed, we will disclose the details publicly and credit the reporter (if they wish).

• Avoid committing secrets or credentials in the repository.
• Keep dependencies updated.
• Follow our CONTRIBUTING.md guidelines for secure coding practices.