Security fixes target the latest published version of yololoop.

Use GitHub private vulnerability reporting for this repository: https://github.com/pittaaron/yololoop/security/advisories/new

If private reporting is unavailable, open a minimal issue that says you have a security report and avoid posting exploit details, credentials, private logs, or sensitive reproduction data publicly.

This project is a local orchestration tool. Do not put provider tokens, GitHub tokens, SSH keys, .env files, or model session files in repository files or yololoop artifacts.