Security fixes are provided for the latest released version on the main branch. Older releases may not receive security updates.

Please do not report security vulnerabilities in public GitHub issues.

Instead, use one of the following:

• GitHub Security Advisories / private vulnerability reporting for this repository, if available
• Email the maintainer directly if a contact address is listed on the repository profile

When reporting a vulnerability, please include:

• affected version(s)
• a clear description of the issue and impact
• reproduction steps or a proof of concept, if possible
• any suggested mitigations

You can expect an initial acknowledgement within a reasonable best-effort timeframe. After triage, the report will be either:

• accepted and worked on privately until a fix is ready, or
• declined with an explanation if it is not considered a security issue

Please avoid including real modem credentials, private IPs, MAC addresses, serial numbers, or other sensitive personal/network data in the report unless strictly necessary.