Please report security vulnerabilities by opening a private GitHub Security Advisory at:

https://github.com/jyshnkr/claudesync/security/advisories/new

Include as much detail as possible:

• A description of the vulnerability and its potential impact
• Steps to reproduce or a proof-of-concept
• Affected versions

You can expect an acknowledgement within 72 hours and a status update within 7 days. If the vulnerability is accepted, a fix will be released as soon as possible and you will be credited in the changelog (unless you prefer to remain anonymous).