Please report security issues privately — do not open a public issue.
We aim to acknowledge reports within 72 hours.
Never commit .env, *.pem, *.key, or anything under secrets/ — these are
excluded by .gitignore. Rotate any credential you suspect is exposed.
Maintained by Viprasol Tech Private Limited.