Please do not open a public GitHub issue for suspected security vulnerabilities.

Instead:

• Use GitHub Security Advisories / private vulnerability reporting for this repository if available.
• If private reporting is not available, contact the maintainers privately through GitHub.

Include:

• A clear description of the issue
• Steps to reproduce
• Impact assessment (what could happen)
• Any proposed mitigation or patch (if available)

This repository contains benchmark tasks and tooling and may include third-party fixture code under benchmark environments. If the issue is in third-party upstream code, please also report it to the upstream project maintainers when appropriate.