Do not include secrets, raw session logs, cookies, API keys, tokens, or private identity/account data in this repository.

If you find sensitive data in an example, template, tool output, or impact file, open a private report to the repository owner when possible. If private reporting is not available, open a minimal public issue that does not repeat the secret.

Security-related OSS support should stay within static analysis and public project scope unless the project explicitly authorizes deeper testing.