doc: create SECURITY.md

[ameypv-rudder]

Description

Added a SECURITY.md file with the relevant contact email for reporting any security-related issues.

Notion Ticket

https://www.notion.so/rudderstacks/Add-security-md-to-all-the-major-public-repos-d6696c93147f4d8299302fa59c4ad465

Security

• The code changed/added as part of this pull request won't create any security issues with how the software is being used.

[codecov]

Codecov Report

Base: 43.66% // Head: 43.07% // Decreases project coverage by -0.58% ⚠️

Coverage data is based on head (ff44580) compared to base (2f956b7).
Patch has no changes to coverable lines.

❗ Current head ff44580 differs from pull request most recent head a134ef5. Consider uploading reports for the commit a134ef5 to get more accurate results

Additional details and impacted files

@@            Coverage Diff             @@
##           master    #2656      +/-   ##
==========================================
- Coverage   43.66%   43.07%   -0.59%     
==========================================
  Files         191      335     +144     
  Lines       40483    52705   +12222     
==========================================
+ Hits        17677    22703    +5026     
- Misses      21700    28610    +6910     
- Partials     1106     1392     +286     

Impacted Files	Coverage Δ
regulation-worker/internal/client/client.go	66.42% <0.00%> (-0.97%)	⬇️
warehouse/warehouse.go	8.42% <0.00%> (-0.26%)	⬇️
warehouse/api.go	70.41% <0.00%> (ø)
warehouse/retry.go	87.58% <0.00%> (ø)
warehouse/identities.go	1.04% <0.00%> (ø)
warehouse/table_upload.go	93.92% <0.00%> (ø)
warehouse/archiver.go
warehouse/datalake/schema-repository/glue.go	0.00% <0.00%> (ø)
...ices/streammanager/eventbridge/mock_eventbridge.go	100.00% <0.00%> (ø)
app/apphandlers/setup.go	78.94% <0.00%> (ø)
... and 230 more

Help us with your feedback. Take ten seconds to tell us how you rate us. Have a feature suggestion? Share it here.

☔ View full report at Codecov.
📢 Do you have feedback about the report comment? Let us know in this issue.

[chrikar]

Let's also add a notion task link for this @ameypv-rudder

[ameypv-rudder]

@chrikar done! If you can approve, we can merge this and proceed with the other repos in the same format.

[atzoum]

we could also add a supported versions section and mention that we will fix security bugs for the latest major.minor version published in docker hub.

eg. something similar to that:
https://github.com/quarkusio/quarkus/blob/main/SECURITY.md

[ameypv-rudder]

we could also add a supported versions section and mention that we will fix security bugs for the latest major.minor version published in docker hub.

eg. something similar to that: https://github.com/quarkusio/quarkus/blob/main/SECURITY.md

Makes sense, @atzoum - where/who can I get this information re: supported versions from?

[atzoum]

we could also add a supported versions section and mention that we will fix security bugs for the latest major.minor version published in docker hub.
eg. something similar to that: https://github.com/quarkusio/quarkus/blob/main/SECURITY.md

Makes sense, @atzoum - where/who can I get this information re: supported versions from?

Our releases are here. We don't need to specify specific release, since we don't want to update the document all the time, simply use a similar generic table, e.g.

Version	Supported
latest 1.x	✅
older 1.x	❌
< 1.0	❌

[ameypv-rudder]

@atzoum thanks Aris for your suggestions - I've incorporated those in the PR.