Please do not file public issues for credential exposure, infrastructure access, or vulnerabilities that could affect funds, bridge integrity, or signing flows.
Use GitHub Security Advisories or contact the repository maintainers through a private channel if one is listed for the project.
When reporting a vulnerability, include:
- affected commit or release
- impact and preconditions
- reproduction steps
- any suggested mitigation