Please report security issues privately by emailing security@world.org.

Do not open public GitHub issues for vulnerabilities, credential exposure, or abuse paths. Include the affected crate, version or commit, reproduction steps, and any relevant logs with secrets redacted.

We aim to acknowledge reports within 5 business days and will coordinate fixes and disclosure timing with the reporter.