Security fixes are provided for the latest released version of this package.

Please do not open public issues for suspected security vulnerabilities.

Report vulnerabilities by emailing brian.schaeffner@sympress.de with:

• A description of the issue and its impact
• Steps to reproduce or a minimal proof of concept
• Affected versions or commits, if known
• Any relevant logs with secrets removed

You should receive an acknowledgement within 72 hours. Confirmed vulnerabilities will be handled with coordinated disclosure.

Mailer settings can contain SMTP credentials, provider API keys, sender policy, and test-recipient addresses. Avoid exposing option values in logs, screenshots, support bundles, or public issue reports.