From 07fd92567a3430bebcbf813f851d20f8f9ae6bc4 Mon Sep 17 00:00:00 2001
From: Nima Fallah <nfallah399@gmail.com>
Date: Tue, 26 Nov 2024 08:46:44 -0500
Subject: [PATCH] Add security policy

---
 README.md   | 4 ++++
 SECURITY.md | 5 +++++
 2 files changed, 9 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/README.md b/README.md
index b86303000..dff6e9039 100644
--- a/README.md
+++ b/README.md
@@ -148,6 +148,10 @@ vscode ➜ /workspaces/fasttrackml (main) $ make run
 ```
 </details>
 
+### Security
+
+Please see our [security policy](https://github.com/G-Research/fasttrackml/blob/main/SECURITY.md) for details on reporting security vulnerabilities.
+
 ### License
 
 Copyright 2022-2023 G-Research
diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 000000000..efe2a00c2
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,5 @@
+# Security and Coordinated Vulnerability Disclosure Policy
+
+This project appreciates and encourages coordinated disclosure of security vulnerabilities. We prefer that you use the GitHub reporting mechanism to privately report vulnerabilities. Under the main repository's security tab, click "Report a vulnerability" to open the advisory form.
+
+If you are unable to report it via GitHub, have received no response after repeated attempts, or have other security related questions, please contact security@gr-oss.io and mention this project in the subject line.
\ No newline at end of file