From b6fb5bd73a2a1261b05ff76249d58fa76e8104b8 Mon Sep 17 00:00:00 2001
From: fraxken <gentilhomme.thomas@gmail.com>
Date: Tue, 13 Aug 2024 02:03:23 +0200
Subject: [PATCH] chore: add SECURITY policy

---
 SECURITY.md | 4 ++++
 1 file changed, 4 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..994535e
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,4 @@
+# Reporting Security Issues
+To report a security issue, please [publish a private security advisory](https://github.com/OpenAlly/configs/security/advisories) with a description of the issue, the steps you took to create the issue, affected versions, and, if known, mitigations for the issue.
+
+Our vulnerability management team will respond within one week to your email. If the issue is confirmed as a vulnerability, we will open a Security Advisory and acknowledge your contributions as part of it. This project follows a 90 day disclosure timeline.
\ No newline at end of file