From 425ef900b15372964d3d882372ae0599283338e0 Mon Sep 17 00:00:00 2001
From: Sebastian Serth <Sebastian.Serth@hpi.de>
Date: Fri, 29 Apr 2022 23:09:07 +0200
Subject: [PATCH] Add SECURITY.md

---
 SECURITY.md | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..602cc3d
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,15 @@
+# Security Policy
+
+ ## Supported Versions
+
+ To receive fixes for security vulnerabilities it is required to always upgrade to the latest version of Poseidon. 
+ See https://github.com/openHPI/poseidon/tree/main for the latest version.
+
+ ## Reporting a Vulnerability
+
+ If you have found a vulnerability or you are uncertain whether what you have discovered is a vulnerability,
+ please send an email to sebastian.serth@hpi.de ([GPG Key](https://github.com/mrserth.gpg)).
+
+ If you have a patch for the issue please use `git format-patch` and attach it to the email. Please do not open an issue or 
+ pull request on GitHub as that may disclose sensitive details around the vulnerability.
+