Create SECURITY.md

SECURITY.md

@@ -0,0 +1,39 @@
+# Security Policy
+
+## Supported Versions
+
+The table below outlines which versions of this project currently receive security updates:
+
+| Version | Supported          |
+| ------- | ------------------ |
+| 5.1.x   | ✅ Yes              |
+| 5.0.x   | ❌ No               |
+| 4.0.x   | ✅ Yes              |
+| < 4.0   | ❌ No               |
+
+Please ensure you are using a supported version to receive timely security patches and fixes.
+
+## Reporting a Vulnerability
+
+If you discover a security vulnerability in this project, please follow these steps:
+
+1. **Do not disclose the vulnerability publicly.**
+2. **Report the issue privately** by emailing us at: [security@yourdomain.com] *(replace with your real contact)*  
+   Or open a private security advisory via [GitHub's security advisories page](https://github.com/ton-community/tutorials/security/advisories/new).
+3. Please include:
+   - A clear description of the issue.
+   - Steps to reproduce (if applicable).
+   - Any potential impact and suggested fix (optional but appreciated).
+
+### Response Time
+
+We aim to respond to vulnerability reports within **72 hours**, and will keep you informed as we:
+- Triage the issue.
+- Confirm the vulnerability.
+- Work on a fix or determine next steps.
+
+Your contribution to making this project more secure is greatly appreciated!
+
+---
+
+Let me know if you want to add a PGP key for encrypted reports or route disclosures via a third-party platform like HackerOne or Bugcrowd.