If you discover a security vulnerability, please report it responsibly:

1. Do not open a public GitHub issue
2. Email the maintainer directly or use GitHub Security Advisories
3. Include a description of the vulnerability and steps to reproduce

We will respond within 48 hours and work to release a fix promptly.