Add security reorting guidelines for Tidelift

kiwitcms · Nov 10, 2019 · 4f7dac6 · 4f7dac6
1 parent 99ecf3c
commit 4f7dac6
Showing 1 changed file with 17 additions and 0 deletions.
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,17 @@
+# Security Policy
+
+## Supported Versions
+
+| Version | Supported          |
+| ------- | ------------------ |
+| [latest](https://pypi.org/project/tcms-api/) | :heavy_check_mark: |
+
+## Reporting a Vulnerability
+
+In case you have found a security problem with *tcms-api* **DO NOT** report
+it into GitHub Issues. Instead go to
+[https://tidelift.com/security](https://tidelift.com/security)
+and follow the instructions there.
+
+The Kiwi TCMS team is registered as a lifter at Tidelift and will be
+notified when you report the security problem with them!