The latest revision of each repository's default branch is supported unless a local policy says otherwise.
Do not disclose vulnerabilities through ordinary public issues. Use
Security -> Report a vulnerability in the affected repository when private
vulnerability reporting is available. If that flow is unavailable, email
hi@kikuai.dev.
Please include, when practical:
- the affected repository, component, and version or commit;
- reproduction steps or a minimal proof;
- likely impact;
- a possible fix or mitigation.
Never include real credentials, private repository contents, personal data, or unsafe production artifacts in a report.