The latest published minor release is the supported security target.

Please report potential vulnerabilities privately by emailing:

• eran@eran.codes

Include:

1. A clear description of the issue.
2. A minimal reproduction.
3. Impact assessment and any known mitigations.

We will acknowledge receipt and coordinate a fix and disclosure timeline.