program: add solana-security-txt

[2501babe]

i remember someone last month on discord confused about how to figure out what bpf stake they were supposed to verify against so i thought itd be nice to add this. doesnt help us for v5 but will next time!

in the spl repos we never filled out source_release because it doesnt really work with the github actions release flow, but i think this is a nice solution. no new commit needed, automatically the correct thing for releases we actually do. it will be wrong for ad hoc builds obviously. but i think this is fine since the whole point is for people to go deployed build -> github tag -> self-verification and we only deploy tagged releases

the project url is less than ideal but seems like the least bad thing, solana.com has a few pages on staking and stake accounts but nothing that actually mentions the stake program

query-security-txt ../target/deploy/solana_stake_program.so
Name: Solana Stake Program
Project URL: https://solana.com/docs/core/programs/builtin-programs#all-core-programs

Contacts:
  Link: https://github.com/solana-program/stake/security/advisories/new
  Email: security@anza.xyz
  Discord: https://discord.gg/solana

Policy:
https://github.com/solana-program/stake/blob/main/SECURITY.md

Preferred Languages:
  en
Source code: https://github.com/solana-program/stake/tree/main/program
Source release: program@v5.0.0

Auditors:
  https://github.com/solana-program/stake/tree/main?tab=readme-ov-file#security-audits

[joncinque]

Looks great!

[joncinque]

Oh slick!