From 0888e6132abd8f9fbb18ac8b61e09fbfbf157046 Mon Sep 17 00:00:00 2001
From: Kumi <git@kumi.email>
Date: Fri, 15 Mar 2024 14:33:14 +0100
Subject: [PATCH] feat: add initial SECURITY.md for project guidelines

Introduced a Security Policy in the newly added SECURITY.md file,
outlining the project's current security status, cautioning users about
its early-stage development, and providing guidance on reporting
vulnerabilities. This establishes a clear protocol for communicating and
handling security concerns, ensuring contributors and users have a
direct channel for raising security issues with the Private.coffee
security team. This move reflects a proactive approach to security and
transparency as the project evolves.
---
 SECURITY.md | 9 +++++++++
 1 file changed, 9 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..afbab88
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,9 @@
+# Security Policy
+
+Please note that Quackscape is still in the early stages of development and is not yet ready for production use, so we do not guarantee the security of the project at this time. We are working to improve the security of the project, and we will update this policy as the project matures.
+
+## Reporting a Vulnerability
+
+If you find a security vulnerability in this project, please get in touch with the Private.coffee security team. You can find contact details at [security.private.coffee](https://security.private.coffee).
+
+For anything non-security related, please use issues in the [Private.coffee Git](https://git.private.coffee/PrivateCoffee/quackscape/issues) or [GitHub](https://github.com/PrivateCoffee/quackscape/issues).
\ No newline at end of file