From 79a8b40bfc3e6da5aa63e0494ac8ee14a8300e5d Mon Sep 17 00:00:00 2001
From: Pavel Popov <tolkonepiu@users.noreply.github.com>
Date: Thu, 24 Nov 2022 19:31:50 +0700
Subject: [PATCH] Add security policy (#31)

---
 SECURITY.md | 13 +++++++++++++
 1 file changed, 13 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..4015f14
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,13 @@
+# Security Policy
+
+If you think you have identified a security related issue with a repository, please report it immediately to the lead maintainer at <a href="mailto:security@vality.dev?subject=SECURITY REPO-NAME-HERE">security@vality.dev</a>. If you are not sure, don’t worry. Better safe than sorry – just send an email.
+
+Do not open issues related to any security concerns publicly. Please do not include anyone else on the disclosure email. Preferably only one point of contact for replies.
+
+When reporting an issue, include as much information as possible. Just tell us what you found, how to reproduce it, and any concerns you have about it. We will respond as soon as possible and follow up with any missing information.
+
+## Disclosure Policy
+
+Once an issue has been confirmed, we will work to resolve it.
+
+If you have a suggestion for a patch; Coordinate with the lead maintainer for when to publicly post an issue and pull request. Giving you credit for your effort.