diff --git a/contributions/demo/week6/tocarls-shahoud/README.md b/contributions/demo/week6/tocarls-shahoud/README.md
new file mode 100644
index 0000000000..3bc7bfa5b7
--- /dev/null
+++ b/contributions/demo/week6/tocarls-shahoud/README.md
@@ -0,0 +1,26 @@
+# Assignment Proposal
+
+## Title
+
+Using dependabot to automatically detect vulnerabilities in imported packages
+
+## Names and KTH ID
+
+- Tobias Carlsson (tocarls@kth.se)
+- Siham Shahoud (shahoud@kth.se)
+
+## Deadline
+
+- Week 6
+
+## Category
+
+- Demo
+
+## Description
+
+We want to demo dependabot, it is a tool that scans imported libraries for vulnerabilities, we want to demo how dependabot will automatically create pull requests when an imported library shows a vulnerability. This is very beneficial with keeping your applications more secure from vulnerable code that is not directly under your control.
+
+**Relevance**
+
+This let's organisations automatically check their applications for security vulnerabilities and therefore is a valuable tool for DevSecOps.
\ No newline at end of file