- Report vulnerabilities privately to security@thenovacene.com. We aim to reply within 3 business days.
- Please include repro steps, affected versions, and impact.
- We follow responsible disclosure; we credit reporters unless anonymity is requested.
- Avoid submitting sensitive data in tickets or PRs.