Only the latest main branch is supported at this stage.

Do not disclose security issues in public issues or pull requests.

Instead:

1. Prepare a minimal reproduction or affected file list.
2. Describe impact, prerequisites, and any known exploit path.
3. Use GitHub private vulnerability reporting at: https://github.com/XucroYuri/how-to-make-script/security/advisories/new
4. If the private reporting form is unexpectedly unavailable, stop and wait for it to be re-enabled. Do not open a public issue for a live security problem.

Never post secrets, proprietary scripts, or private client materials in public issues, pull requests, or discussions.