This project is an early prototype. Security fixes are handled on the default branch.

Please report suspected vulnerabilities privately to the repository owner or maintainers instead of opening a public issue.

Include:

• A short description of the issue
• Steps to reproduce, if known
• Affected files, commands, or browser flows
• Any logs or screenshots that do not expose secrets

• Do not commit secrets, API keys, tokens, credentials, or private .env files.
• Do not commit personal data or private capture data.
• Treat raw datasets and generated artifacts as sensitive unless they are intentionally documented for public use.
• Rotate any credential immediately if it is accidentally exposed.