From 141ee3441f767bc633d59db31f6427fcd850f4e3 Mon Sep 17 00:00:00 2001
From: Alexis Mousset <alexis.mousset@rudder.io>
Date: Sun, 15 Dec 2024 20:24:57 +0100
Subject: [PATCH] Create SECURITY.md (#11)

---
 SECURITY.md | 14 ++++++++++++++
 1 file changed, 14 insertions(+)
 create mode 100644 SECURITY.md

diff --git a/SECURITY.md b/SECURITY.md
new file mode 100644
index 0000000..0d7869a
--- /dev/null
+++ b/SECURITY.md
@@ -0,0 +1,14 @@
+# Security Policy
+
+## 🔒 Security advisories
+
+Our [advisories are published on GitHub](https://github.com/Normation/raugeas/security/advisories).
+
+## Reporting a Vulnerability
+
+You can report a vulnerability:
+
+* By email at [security@rudder.io](mailto:security@rudder.io)
+  * 🔑 You can encrypt your messages using our [GPG key](https://repository.rudder.io/tools/rudder-security.asc)
+(fingerprint: `340C 9645 2F9A 816C 330A 99B7 C854 668E 3617 3DB3`)
+* By using [private vulnerability reporting](https://github.com/Normation/raugeas/security/advisories/new) on GitHub