Security fixes land on the latest supported patch release.

Please use GitHub Security Advisories for sensitive reports:

1. Open the repository on GitHub.
2. Go to the Security tab.
3. Choose Report a vulnerability.

Include:

• the affected crate and version
• a clear impact summary
• reproduction steps or a proof of concept
• any suggested remediation or mitigation

You can use GitHub issues for non-sensitive security hardening suggestions that are safe to discuss publicly.