This project targets lawful use by owners or authorised administrators of their own systems. We do not support or accept features that bypass authentication, rely on leaked credentials, or violate third-party terms of service.

Please use GitHub’s Private vulnerability reporting to contact the maintainers. Provide reproduction steps and affected versions. Do not include live credentials or secrets.

We will acknowledge within 5 business days and coordinate a fix or a public statement as appropriate.