Merge pull request #38 from rashley-iqt/security-policy

arichadda · web-flow · commit 74d7529f59b4 · 2023-03-31T15:12:16.000-04:00
added security policy
diff --git a/SECURITY.md b/SECURITY.md
@@ -0,0 +1,7 @@
+# Security Policy
+
+IQT Labs takes the security of its projects very seriously. If you find a vulnerability or a bug with security implications we want to hear about it. That being said, please **do not** submit an issue via the standard issue tracker as these are publicly visible. Instead we ask that you email your findings to our security team at [LabsSecurity+edgetech@iqt.org](mailto:LabsSecurity+edgetech@iqt.org) so that we can properly assess and address these issues. Please err on the side of caution, even partial or fragmentary information may be helpful to us. 
+
+We will attempt to confirm all reports within 72 hours. Triage and remediation timelines will depend on the nature and complexity of the issue found.
+
+We appreciate the efforts of anyone attempting to help improve the security of our tools!
