Security fixes are applied to the latest release tag (v1) and current main branch.
Please do not open a public issue for security vulnerabilities.
Instead, report privately by email:
dfr@esmad.ipp.pt
Include:
- Affected version/tag
- Reproduction steps
- Potential impact
- Suggested mitigation (if available)
We will acknowledge receipt as soon as possible and provide status updates during triage and remediation.