Only the latest version on the main branch is supported with security updates.

Please report security vulnerabilities through GitHub private vulnerability reporting.

You will receive an acknowledgment within 72 hours. The report will be investigated and you will be updated on the outcome.

The following are in scope for security reports:

• Credential exposure — secrets or API keys accidentally committed
• Dependency vulnerabilities — exploitable issues in project dependencies
• Injection via scraped content — malicious content from upstream pages that could affect downstream consumers of the generated markdown

General bugs and feature requests should be filed as regular issues.