From 2fee9b9bd1590cf13f342ecffea4315afab1a250 Mon Sep 17 00:00:00 2001
From: Enrique Barcelli <kiko@barcelli.net>
Date: Sun, 25 Aug 2024 00:46:19 +0800
Subject: [PATCH] Add security policy

---
 SECURITY.md | 19 +++++++++++++++++++
 1 file changed, 19 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..5674c99
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,19 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 0.5.x   | :heavy_check_mark: |
+| 0.4.x   | :heavy_check_mark: |
+| 0.3.x   | :heavy_check_mark: |
+| 0.2.x   | :x:                |
+| 0.1.x   | :x:                |
+
+## Reporting
+
+We take Security seriously, so if you have discovered a security risk report it by email to [kiko@barcelli.net](mailto:kiko@barcelli.net) preferably using end-to-end encrypted messages with the following PGP key: [0x70c7d0901133471df2e6e9a8006c13a68e25d3b7](https://keyserver.ubuntu.com/pks/lookup?op=get&search=0x70c7d0901133471df2e6e9a8006c13a68e25d3b7).
+
+Our team will assess and handle it accordingly. Please don't disclose security risks publicly until they have been handled by our team.
+
+Your email will be acknowledged within 24 hours, and you will receive a more detailed email response about the actions to be taken to handle your report within 1 week.