Please do not report security vulnerabilities in public issues.
Send security reports to github@starhui.cc with:
- The affected project and version or commit.
- A clear description of the vulnerability.
- Reproduction steps or proof of concept, if available.
- Impact assessment and any suggested mitigation.
We will review the report and respond as soon as practical.
This policy applies to public repositories under the starhui-dev organization unless a repository provides its own security policy.