We aim to support the latest minor release of BlazeServe. Security fixes will generally be released as patch versions.

Please report security issues privately to contactjaydeepsolanki@gmail.com. We will acknowledge receipt within 72 hours and provide a timeline for the fix after initial triage.

• We will work with you to validate and remediate the issue.
• Please do not disclose the vulnerability publicly until a fix is released and users have had reasonable time to update.

Only issues affecting the BlazeServe codebase and published packages are in scope. Third-party dependencies should be reported upstream when appropriate.