If you discover a security vulnerability in Template Toolkit, please report it responsibly.

Do not open a public GitHub issue for security vulnerabilities.

Instead, please use one of the following methods:

• GitHub Private Vulnerability Reporting: Report a vulnerability via GitHub's built-in private reporting feature.

• Email: Contact the maintainers directly at the email addresses listed in the distribution metadata on MetaCPAN.

Please include:

• A description of the vulnerability
• Steps to reproduce the issue
• The version of Template Toolkit affected
• Any potential impact assessment

We will acknowledge receipt of your report and aim to provide an initial assessment promptly. Security fixes will be prioritized and released as soon as practical.

This policy covers the Template Toolkit distribution (Template-Toolkit) as published on CPAN and maintained in this repository.