The public main branch is the supported branch for security reports.
Please report security issues through the GitHub repository issue tracker or by contacting the repository maintainers through the associated organization.
Do not include private API keys, model credentials, or unpublished dataset material in public reports.
Evaluation scripts load credentials from .env. Do not commit real values for:
HF_TOKENDASHSCOPE_API_KEYDEEPSEEK_API_KEYOPENAI_API_KEY