Security fixes are prioritized for the latest stable release line. Older versions may receive fixes on a best-effort basis.

Please do not open public issues for security vulnerabilities.

Use one of the following private channels:

• GitHub Security Advisory: Security tab in this repository
• HauntedMC support: https://www.hauntedmc.nl/support

Include:

• Affected version(s)
• Reproduction steps / proof of concept
• Impact assessment
• Any proposed mitigation

• We acknowledge reports as quickly as practical.
• We validate impact, prioritize by severity, and prepare a fix.
• We coordinate disclosure after a fix or mitigation is available.

Please allow maintainers time to validate and patch before public disclosure.