From 6328020faf3d3564af9164185e27e7527d403d27 Mon Sep 17 00:00:00 2001
From: Emil Jonathan Eriksson <8700261+ginger51011@users.noreply.github.com>
Date: Sat, 5 Oct 2024 15:06:21 +0200
Subject: [PATCH] Add security policy

---
 SECURITY.md | 21 +++++++++++++++++++++
 1 file changed, 21 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..5fcb4a4
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,21 @@
+# Security Policy
+
+## Supported Versions
+
+Only the latest MINOR version (MAJOR.MINOR.PATCH) is officially supported.
+However, in the case of a major security vulnerability, a patch may be
+backported to earlier versions as well.
+
+## Reporting a Vulnerability
+
+Please report any found vulnerability using the
+[GitHub private vulnerability reporting tool](https://github.com/ginger51011/pandoras_pot/security),
+available under the `Security` tab. Please allow for up to 30 days for the
+vulnerability to be fixed. If after this time the issue has not been
+acknowledged, please feel free to disclose it openly, for example via
+[RustSec](https://rustsec.org/).
+
+Your report should contain affected verion(s), a description of the issue, and
+way to reproduce the issue if applicable. You are welcome to suggest solutions
+to the issue. If you do not want to be credited with the finding, please state
+so in your report.