Please do not open a public issue for security vulnerabilities.
Instead, contact the maintainers privately with:
- A description of the issue
- Steps to reproduce it
- Affected versions or commits
- Any suggested fix or mitigation
This package is a client-side React UI library. Security issues may include:
- Unsafe rendering patterns
- XSS-prone APIs
- Dangerous defaults
- Dependency vulnerabilities affecting consumers
Dev-only toolchain advisories are tracked separately from production package runtime risk.