Security updates are applied to the latest published minor version.

Please report security vulnerabilities privately. Do not open a public issue.

Contact:

• Email: gustavoquintela86@gmail.com
• Subject: [SECURITY] @gustavoqnt/idempotency-local

When reporting, include:

1. A clear description of the issue.
2. A minimal reproduction.
3. Impact assessment.
4. Suggested mitigation, if available.

• Initial acknowledgment: within 72 hours.
• Triage status update: within 7 days.
• Fix target: as soon as reasonably possible based on severity.

After a fix is released, coordinated public disclosure is welcome. We will document relevant security fixes in CHANGELOG.md.